Vulnerabilities > CVE-2001-0208 - Unspecified vulnerability in Microfocus Cobol 4.1

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

microfocus

exploit available

NVD

Published: 2001-06-02

Updated: 2008-09-05

Summary

MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the nolicense file with insecure permissions, which allows local users to gain privileges by modifying files.

Vulnerable Configurations

Part	Description	Count
Application	Microfocus Microfocus Cobol 4.1	1

Exploit-Db

description	Micro Focus Cobol 4.1 Arbitrary Command Execution Vulnerability. CVE-2001-0208 . Local exploit for unix platform
id	EDB-ID:20621
last seen	2016-02-02
modified	2001-02-12
published	2001-02-12
reporter	Dixie Flatline
source	https://www.exploit-db.com/download/20621/
title	Micro Focus Cobol 4.1 - Arbitrary Command Execution Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References