CVE Vulnerabilities

CVE-2003-0461

Published: Aug 27, 2003 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords.

Affected Software

Name Vendor Start Version End Version
Linux Redhat 7.1 7.1
Linux Redhat 7.2 7.2
Linux Redhat 7.3 7.3
Linux Redhat 8.0 8.0
Linux Redhat 9.0 9.0
Red Hat Enterprise Linux 3 RedHat kernel-0:2.4.21-15.EL *
Kernel-source-2.4.27 Ubuntu dapper *
Kernel-source-2.4.27 Ubuntu edgy *

References