Lucene search

[email protected]NVD:CVE-2002-0499

HistoryAug 12, 2002 - 4:00 a.m.

CVE-2002-0499

2002-08-1204:00:00

[email protected]

web.nvd.nist.gov

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

Percentile

0.4%

JSON

The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and earlier, truncates long pathnames without generating an error, which could allow local users to force programs to perform inappropriate operations on the wrong directories.

Affected configurations

Nvd

Node

linuxlinux_kernelMatch2.2.0

linuxlinux_kernelMatch2.2.1

linuxlinux_kernelMatch2.2.2

linuxlinux_kernelMatch2.2.3

linuxlinux_kernelMatch2.2.4

linuxlinux_kernelMatch2.2.5

linuxlinux_kernelMatch2.2.6

linuxlinux_kernelMatch2.2.7

linuxlinux_kernelMatch2.2.8

linuxlinux_kernelMatch2.2.9

linuxlinux_kernelMatch2.2.10

linuxlinux_kernelMatch2.2.11

linuxlinux_kernelMatch2.2.12

linuxlinux_kernelMatch2.2.13

linuxlinux_kernelMatch2.2.14

linuxlinux_kernelMatch2.2.15

linuxlinux_kernelMatch2.2.16

linuxlinux_kernelMatch2.2.17

linuxlinux_kernelMatch2.2.18

linuxlinux_kernelMatch2.2.19

linuxlinux_kernelMatch2.2.20

linuxlinux_kernelMatch2.3.0

linuxlinux_kernelMatch2.3.99

linuxlinux_kernelMatch2.4.0

linuxlinux_kernelMatch2.4.1

linuxlinux_kernelMatch2.4.2

linuxlinux_kernelMatch2.4.3

linuxlinux_kernelMatch2.4.4

linuxlinux_kernelMatch2.4.5

linuxlinux_kernelMatch2.4.6

linuxlinux_kernelMatch2.4.7

linuxlinux_kernelMatch2.4.8

linuxlinux_kernelMatch2.4.9

linuxlinux_kernelMatch2.4.10

linuxlinux_kernelMatch2.4.11

linuxlinux_kernelMatch2.4.12

linuxlinux_kernelMatch2.4.13

linuxlinux_kernelMatch2.4.14

linuxlinux_kernelMatch2.4.15

linuxlinux_kernelMatch2.4.16

linuxlinux_kernelMatch2.4.17

linuxlinux_kernelMatch2.4.18

VendorProductVersionCPE
linuxlinux_kernel2.2.0cpe:2.3:o:linux:linux_kernel:2.2.0:*:*:*:*:*:*:*
linuxlinux_kernel2.2.1cpe:2.3:o:linux:linux_kernel:2.2.1:*:*:*:*:*:*:*
linuxlinux_kernel2.2.2cpe:2.3:o:linux:linux_kernel:2.2.2:*:*:*:*:*:*:*
linuxlinux_kernel2.2.3cpe:2.3:o:linux:linux_kernel:2.2.3:*:*:*:*:*:*:*
linuxlinux_kernel2.2.4cpe:2.3:o:linux:linux_kernel:2.2.4:*:*:*:*:*:*:*
linuxlinux_kernel2.2.5cpe:2.3:o:linux:linux_kernel:2.2.5:*:*:*:*:*:*:*
linuxlinux_kernel2.2.6cpe:2.3:o:linux:linux_kernel:2.2.6:*:*:*:*:*:*:*
linuxlinux_kernel2.2.7cpe:2.3:o:linux:linux_kernel:2.2.7:*:*:*:*:*:*:*
linuxlinux_kernel2.2.8cpe:2.3:o:linux:linux_kernel:2.2.8:*:*:*:*:*:*:*
linuxlinux_kernel2.2.9cpe:2.3:o:linux:linux_kernel:2.2.9:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	2.2.0	cpe:2.3:o:linux:linux_kernel:2.2.0:::::::*
linux	linux_kernel	2.2.1	cpe:2.3:o:linux:linux_kernel:2.2.1:::::::*
linux	linux_kernel	2.2.2	cpe:2.3:o:linux:linux_kernel:2.2.2:::::::*
linux	linux_kernel	2.2.3	cpe:2.3:o:linux:linux_kernel:2.2.3:::::::*
linux	linux_kernel	2.2.4	cpe:2.3:o:linux:linux_kernel:2.2.4:::::::*
linux	linux_kernel	2.2.5	cpe:2.3:o:linux:linux_kernel:2.2.5:::::::*
linux	linux_kernel	2.2.6	cpe:2.3:o:linux:linux_kernel:2.2.6:::::::*
linux	linux_kernel	2.2.7	cpe:2.3:o:linux:linux_kernel:2.2.7:::::::*
linux	linux_kernel	2.2.8	cpe:2.3:o:linux:linux_kernel:2.2.8:::::::*
linux	linux_kernel	2.2.9	cpe:2.3:o:linux:linux_kernel:2.2.9:::::::*

Rows per page:

1-10 of 421

References

archives.neohapsis.com/archives/vulnwatch/2002-q1/0074.html

www.cs.helsinki.fi/linux/linux-kernel/2002-13/0054.html

www.iss.net/security_center/static/8634.php

www.securityfocus.com/archive/1/264117

www.securityfocus.com/bid/4367

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

Percentile

0.4%

JSON

Related for NVD:CVE-2002-0499

exploitdb1 cvelist1 cve1