282 matches found
CVE-2002-1601
The Connectables feature in Adobe PhotoDeluxe 3.1 prepends the Adobe directory to the CLASSPATH environment variable, which allows applets to run with higher privileges and remote attackers to gain privileges via an HTML e-mail message or a web page...
CVE-2000-1202
The CVE-2000-1202 entry affects IBMHSSSB 1.0 (ikeyman). The issue arises when ikeyman sets the CLASSPATH to include the user’s CLASSPATH before system dirs, enabling a local attacker to run arbitrary code as root via a Trojan horse Ikeyman class. The NVD entry lists a high severity (CVSSv2 7.2; L...