CVE-2003-1460

Published Dec 31, 2003

Last updated 16 years ago

CVSS info 3.6

Overview

Description: Worker Filemanager 1.0 through 2.7 sets the permissions on the destination directory to world-readable and executable while copying data, which could allow local users to obtain sensitive information.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 3.6
Impact score: 4.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2702A583-15BF-457E-BBFC-9B166E1AA93C"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20B74B5E-70CE-4AC0-B5C7-3F3087813FEE"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16EFAA4B-2388-474A-B41F-8021777ED035"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C841B0C-C692-44E9-ABBC-BC263D1EC3D8"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:1.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04EB7D49-3D53-459D-B921-DC9293F1FC22"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:1.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FCFF97B-AA5C-4FA9-8BEE-EB543D518E94"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:1.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A7F21F8-64E9-4BA8-AB59-F11504D2F1B6"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15D88E72-1FBA-447F-9615-4C64E253E1B7"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55CB43A7-2578-4F1B-972F-C214461B7451"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "159D5FEC-D25C-4B5C-A78D-537C0CD6E7E1"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9B80A07-A465-4965-A2AF-58B191D0E802"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F9D8222-586C-41B1-98A2-76B62DF7D273"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B38B921C-EEFA-4513-8504-5B903F223CF8"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63025674-8B6E-480E-9343-833C30399A79"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C18D894-7EAF-49F7-8B42-795072F40BDE"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C822E6A5-0B4D-4475-8A7D-DE5CC3A0C674"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4E5DDE3-5A19-4354-A250-5EAC5F6E2464"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80DAAB93-52A6-439F-B6CF-8FDBA6276840"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA67B9B4-A901-45A7-A9B8-D335C96959F5"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E8E201D-DFAB-4CE0-B8D8-DAA8A36ABE59"
          },
          {
            "criteria": "cpe:2.3:a:ralf_hoffmann:worker_filemanager:2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C9AD87E-1C8E-4DA6-A4EE-A8FC06141E0A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References