CVE Vulnerabilities

CVE-2002-1395

Published: Jan 17, 2003 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Internet Message (IM) 141-18 and earlier uses predictable file and directory names, which allows local users to (1) obtain unauthorized directory permissions via a temporary directory used by impwagent, and (2) overwrite and create arbitrary files via immknmz.

Affected Software

Name Vendor Start Version End Version
Internet_message Debian 133-0 133-0
Internet_message Debian 141-0 141-0

References