CVE-2003-0461

5 documents5 sources

Severity

2.1LOW

EPSS

0.1%

top 76.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Linux

Timeline

PublishedAug 27

Latest updateApr 29

Description

/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDredhat/linux5 versions+4

Patches

Patch: www.debian.org ↗Patch: www.redhat.com ↗Patch: www.debian.org ↗

🔴Vulnerability Details

GHSA

GHSA-8x73-xrpj-qfx7: /proc/tty/driver/serial in Linux 2↗2022-04-29

▶

CVEList

CVE-2003-0461: /proc/tty/driver/serial in Linux 2↗2003-07-25

▶

📋Vendor Advisories

Red Hat

security flaw↗2003-07-21

▶

💬Community

Bugzilla

CVE-2003-0461 security flaw↗2018-08-16

▶