CVE-2001-1503Solaris vulnerability

6 documents3 sources
Severity
4.3MEDIUMNVD
NVD2.1CNA2.1
EPSS
0.3%
top 50.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN SolarisSUN Sunos
Timeline
PublishedDec 31
Latest updateMay 1

Description

The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

NVDsun/sunos6 versions+5
NVDsun/solaris5 versions+4

🔴Vulnerability Details

4
GHSA
GHSA-hv2h-86hc-65fp: The finger daemon (in2022-05-01
GHSA
GHSA-wq25-g4cq-37g9: The finger daemon (in2022-04-30
CVEList
CVE-2007-4310: The finger daemon (in2007-08-13
CVEList
CVE-2001-1503: The finger daemon (in2005-06-21
CVE-2001-1503 — SUN Solaris vulnerability | cvebase