Vulnerability Description
RXVT-Unicode 3.4 and 3.5 does not properly close file descriptors, which allows local users to access the terminals of other users and possibly gain privileges.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Marc Lehmann | Rxvt-Unicode | 3.4 |
References
- http://cvs.schmorp.de/browse/rxvt-unicode/Changes?view=markup
- http://secunia.com/advisories/12299PatchVendor Advisory
- http://www.osvdb.org/8710Patch
- http://www.securityfocus.com/bid/10959Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17000
- http://cvs.schmorp.de/browse/rxvt-unicode/Changes?view=markup
- http://secunia.com/advisories/12299PatchVendor Advisory
- http://www.osvdb.org/8710Patch
- http://www.securityfocus.com/bid/10959Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17000
FAQ
What is CVE-2004-2215?
CVE-2004-2215 is a vulnerability with a CVSS score of 4.6 (MEDIUM). RXVT-Unicode 3.4 and 3.5 does not properly close file descriptors, which allows local users to access the terminals of other users and possibly gain privileges.
How severe is CVE-2004-2215?
CVE-2004-2215 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2215?
Check the references section above for vendor advisories and patch information. Affected products include: Marc Lehmann Rxvt-Unicode.