← CVECheck
HomeVulnerabilities

CVE-2003-1399 — LOW severity vulnerability (eject 2.0.10, when installed setuid on systems such as SuSE)

eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.

CVE IDCVE-2003-1399
SeverityLOW
CVSS score1.9
CVSS vectorAV:L/AC:M/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2003-12-31
Last modified2026-04-16
Descriptioneject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensitive information.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →