New Search

Red Hat Enterprise Linux 3 Kernel Serial Link Information Disclosure Vulnerability

oval:org.mitre.oval:def:997

/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links which could allow local users to obtain potentially sensitive information such as the length of passwords.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 3
Class:
vulnerability
Reference(s):
  • CVE-2003-0461
Product(s):