[email protected]NVD:CVE-2002-0658

HistoryAug 12, 2002 - 4:00 a.m.

CVE-2002-0658

2002-08-1204:00:00

[email protected]

web.nvd.nist.gov

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.6%

JSON

OSSP mm library (libmm) before 1.2.0 allows the local Apache user to gain privileges via temporary files, possibly via a symbolic link attack.

Affected configurations

NVD

Node

osspmmMatch1.0.0

osspmmMatch1.0.1

osspmmMatch1.0.2

osspmmMatch1.0.3

osspmmMatch1.0.4

osspmmMatch1.0.5

osspmmMatch1.0.6

osspmmMatch1.0.7

osspmmMatch1.0.8

osspmmMatch1.0.9

osspmmMatch1.0.10

osspmmMatch1.0.11

osspmmMatch1.0.12

osspmmMatch1.1.0

osspmmMatch1.1.1

osspmmMatch1.1.2

osspmmMatch1.1.3

References

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-032.0.txt

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc

online.securityfocus.com/advisories/4392

rhn.redhat.com/errata/RHSA-2002-153.html

rhn.redhat.com/errata/RHSA-2002-154.html

rhn.redhat.com/errata/RHSA-2002-156.html

rhn.redhat.com/errata/RHSA-2002-164.html

www.debian.org/security/2002/dsa-137

www.iss.net/security_center/static/9719.php

www.linux-mandrake.com/en/security/2002/MDKSA-2002-045.php

www.novell.com/linux/security/advisories/2002_028_mod_ssl.html

www.redhat.com/support/errata/RHSA-2002-163.html

www.redhat.com/support/errata/RHSA-2003-158.html

www.securityfocus.com/bid/5352

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.6%

JSON

Related for NVD:CVE-2002-0658

nessus12 openvas3 debiancve1 debian2 osv1 cve1 cvelist1 suse1 slackware2 cert1