Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0169

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2002-0169
Last Modified 10 Sep 2008 08:00:37
Published 29 May 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-0169

Summary

The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which could allow users to overwrite files outside of the current directory from an untrusted document by using a full pathname as an element identifier.

Vulnerable Systems

Application

  • Redhat Docbook Stylesheets 1.54.13

  • Redhat Docbook Utils 0.6.13

  • Redhat Docbook Utils 0.6.9-2


References

REDHAT - RHSA-2002:062

BID - 4654

OSVDB - 5349

XF - linux-docbook-stylesheet-insecure(8983)

HP - HPSBTL0205-038


Last Updated: 27 May 2016 10:36:48