Lucene search

[email protected]CVE-2002-1502

HistorySep 01, 2004 - 4:00 a.m.

CVE-2002-1502

2004-09-0104:00:00

[email protected]

web.nvd.nist.gov

cve-2002-1502

symbolic link vulnerability

xbreaky

local users

arbitrary files

symlink

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Symbolic link vulnerability in xbreaky before 0.5.5 allows local users to overwrite arbitrary files via a symlink from the user’s .breakyhighscores file to the target file.

Affected configurations

NVD

Node

dave_brulxbreakyMatch0.0.3

dave_brulxbreakyMatch0.0.4

CPENameOperatorVersion
dave_brul:xbreakydave brul xbreakyeq0.0.3
dave_brul:xbreakydave brul xbreakyeq0.0.4

CPE	Name	Operator	Version
dave_brul:xbreaky	dave brul xbreaky	eq	0.0.3
dave_brul:xbreaky	dave brul xbreaky	eq	0.0.4

References

archives.neohapsis.com/archives/bugtraq/2002-09/0131.html

www.iss.net/security_center/static/10078.php

www.securityfocus.com/bid/5700

xbreaky.sourceforge.net/

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-1502

nvd1 cvelist1