CVE-2009-1214
EPSS 0.08%
Description
GNU screen 4.0.3 creates the /tmp/screen-exchange temporary file with world-readable permissions, which might allow local users to obtain sensitive session information.
How to fix CVE-2009-1214
To remediate CVE-2009-1214, upgrade the affected package to a fixed version below.
- Debian/screen—upgrade to 4.0.3-13 or later
Is CVE-2009-1214 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 4.0.3-13