CVE-2003-1399 — LOW severity vulnerability (eject 2.0.10, when installed setuid on systems such as SuSE)
eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
| CVE ID | CVE-2003-1399 |
|---|---|
| Severity | LOW |
| CVSS score | 1.9 |
| CVSS vector | AV:L/AC:M/Au:N/C:P/I:N/A:N |
| CWE | NVD-CWE-Other |
| Status | Modified |
| Published | 2003-12-31 |
| Last modified | 2026-04-16 |
| Description | eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →