CVE-2003-1379
Published Dec 31, 2003
Last updated 7 years ago
Overview
- Description
- clarkconnectd in ClarkConnect Linux 1.2 allows remote attackers to obtain sensitive information about the server via the characters (1) A, which reveals the date and time, (2) F, (3) M, which reveals 'ifconfig' information, (4) P, which lists the processes, (5) Y, which reveals the snort log files, or (6) b, which reveals /var/log/messages.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:point_clark_networks:clarkconnect:1.2:*:linux:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D71BBF95-9661-421E-8F64-50D2D968E9D6"
}
],
"operator": "OR"
}
]
}
]