Vulnerabilities > CVE-2000-0361 - Unspecified vulnerability in Suse Linux

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

suse

NVD

Published: 1999-12-14

Updated: 2008-09-10

Summary

The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.

Vulnerable Configurations

Part	Description	Count
OS	Suse Suse Suse Linux *	1

References

http://www.novell.com/linux/security/advisories/suse_security_announce_35.html