Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0165

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-0165
Last Modified 05 Sep 2008 04:27:20
Published 03 Apr 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-0165

Summary

LogWatch 2.5 allows local users to gain root privileges via a symlink attack, a different vulnerability than CVE-2002-0162.

Vulnerable Systems

Application

  • Logwatch 2.5


References

XF - logwatch-tmp-race-condition(8652)

BUGTRAQ - 20020403 LogWatch 2.5 still vulnerable

CONFIRM - http://list.kaybee.org/archives/logwatch-announce/2002-March/000003.html


Last Updated: 27 May 2016 10:36:48