{ "id": "CVE-2010-0119", "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com", "published": "2010-02-25T00:30:00.453", "lastModified": "2024-11-21T01:11:34.487", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the process and its arguments, related to \"echoing.\"" }, { "lang": "es", "value": "Bournal anterior a v1.4.1 sobre FreeBSD v8.0, cuando se usa la opci\u00f3n -K, coloca una clave ccrypt en la l\u00ednea de comandos que permite a usuarios locales obtener informaci\u00f3n sensible listando el proceso y sus argumentos. Relacionado con \"echoing\"." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "baseScore": 2.1, "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "availabilityImpact": "NONE" }, "baseSeverity": "LOW", "exploitabilityScore": 3.9, "impactScore": 2.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-200" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:*:*:*:*:*:*:*:*", "versionEndIncluding": "1.4", "matchCriteriaId": "7D468CAD-3063-46EB-AE99-F7400BB7B7C5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.1:*:*:*:*:*:*:*", "matchCriteriaId": "D1709541-EA26-4527-8B4D-331F4085E7E7" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.2:*:*:*:*:*:*:*", "matchCriteriaId": "0C9498E5-376E-4A41-B399-83285B88925E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.3:*:*:*:*:*:*:*", "matchCriteriaId": "B1F136FE-A8AD-4CF6-8689-110E375E9ADC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.4:*:*:*:*:*:*:*", "matchCriteriaId": "BB21BB24-819A-4929-8AAC-E304F8EF2657" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "69FDF8DB-E4E1-46E0-ACC4-9D57CE0C001F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.6:*:*:*:*:*:*:*", "matchCriteriaId": "2CE6BE57-15E3-48E2-871E-63D26E5A9B43" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.7:*:*:*:*:*:*:*", "matchCriteriaId": "FA9ADE86-B2D7-4F90-9FE2-E944E331DEF5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.8:*:*:*:*:*:*:*", "matchCriteriaId": "095A3649-480E-49D7-9B00-0BBB811A7223" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:0.9:*:*:*:*:*:*:*", "matchCriteriaId": "FDD2EA99-A3F1-46AB-954D-67470EBB8AAB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "9FD3F8DD-A9D1-4679-ABF9-0A314578CB9C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "315AFC7C-956F-49A1-9FDE-490E46FCC53F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "E40B531F-2707-4A4D-A6F3-52A72514E1E7" }, { "vulnerable": true, "criteria": "cpe:2.3:a:becauseinter:bournal:1.3:*:*:*:*:*:*:*", "matchCriteriaId": "11D63362-6AD3-49F6-9980-D70159F5E8CE" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:freebsd:freebsd:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "3CF1F9EF-01AF-4708-AE02-765360AF3D66" } ] } ] } ], "references": [ { "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036697.html", "source": "PSIRT-CNA@flexerasoftware.com" }, { "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036701.html", "source": "PSIRT-CNA@flexerasoftware.com" }, { "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036764.html", "source": "PSIRT-CNA@flexerasoftware.com" }, { "url": "http://secunia.com/advisories/38723", "source": "PSIRT-CNA@flexerasoftware.com", "tags": [ "Vendor Advisory" ] }, { "url": "http://secunia.com/advisories/38814", "source": "PSIRT-CNA@flexerasoftware.com" }, { "url": "http://secunia.com/secunia_research/2010-7/", "source": "PSIRT-CNA@flexerasoftware.com", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.securityfocus.com/archive/1/509688/100/0/threaded", "source": "PSIRT-CNA@flexerasoftware.com" }, { "url": "http://www.securityfocus.com/bid/38352", "source": "PSIRT-CNA@flexerasoftware.com" }, { "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036697.html", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036701.html", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036764.html", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://secunia.com/advisories/38723", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] }, { "url": "http://secunia.com/advisories/38814", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://secunia.com/secunia_research/2010-7/", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.securityfocus.com/archive/1/509688/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://www.securityfocus.com/bid/38352", "source": "af854a3a-2127-422b-91ae-364da2661108" } ] }