PT-2004-2359 · Tenable · Nessus

Published

2004-12-31

Updated

2017-07-11

CVE-2004-1445

CVSS v2.0

3.7

Low

Vector

AV:L/AC:H/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Nessus versions 2.0.11 and earlier

Description: A race condition issue exists in the nessus-adduser component of Nessus. This issue can be exploited by local users to gain privileges if the TMPDIR environment variable is not set.

Recommendations: For Nessus versions 2.0.11 and earlier, set the TMPDIR environment variable to prevent exploitation of the race condition issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1445

Affected Products

Nessus

PT-2004-2359 · Tenable · Nessus

CVE-2004-1445

Related Identifiers

Affected Products

References · 6