CVE-2003-1366 — LOW severity vulnerability (chpass in OpenBSD 2.0 through 3.2 allows local users to read)
chpass in OpenBSD 2.0 through 3.2 allows local users to read portions of arbitrary files via a hard link attack on a temporary file used to store user database information.
| CVE ID | CVE-2003-1366 |
|---|---|
| Severity | LOW |
| CVSS score | 3.3 |
| CVSS vector | AV:L/AC:M/Au:N/C:P/I:P/A:N |
| CWE | CWE-200 |
| Status | Modified |
| Published | 2003-12-31 |
| Last modified | 2026-04-16 |
| Description | chpass in OpenBSD 2.0 through 3.2 allows local users to read portions of arbitrary files via a hard link attack on a temporary file used to store user database information. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →