CVE-2002-0377

3 documents3 sources
Severity
2.1LOW
EPSS
0.2%
top 55.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ROB Flynn Gaim
Timeline
PublishedMay 29
Latest updateApr 30

Description

Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other users who run Gaim by reading authentication information from the files.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

NVDrob_flynn/gaim0.57

🔴Vulnerability Details

2
GHSA
GHSA-4vf4-9x77-q598: Gaim 02022-04-30
CVEList
CVE-2002-0377: Gaim 02003-04-02
CVE-2002-0377 (LOW CVSS 2.1) | Gaim 0.57 stores sensitive informat | cvebase.io