Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0658

Overview

Vulnerability Score 6.2 6.2
CVE Id CVE-2002-0658
Last Modified 04 Sep 2013 12:18:30
Published 12 Aug 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2002-0658

Summary

OSSP mm library (libmm) before 1.2.0 allows the local Apache user to gain privileges via temporary files, possibly via a symbolic link attack.

Vulnerable Systems

Application

  • Ossp Mm 1.0.0

  • Ossp Mm 1.0.1

  • Ossp Mm 1.0.10

  • Ossp Mm 1.0.11

  • Ossp Mm 1.0.12

  • Ossp Mm 1.0.2

  • Ossp Mm 1.0.3

  • Ossp Mm 1.0.4

  • Ossp Mm 1.0.5

  • Ossp Mm 1.0.6

  • Ossp Mm 1.0.7

  • Ossp Mm 1.0.8

  • Ossp Mm 1.0.9

  • Ossp Mm 1.1.0

  • Ossp Mm 1.1.1

  • Ossp Mm 1.1.2

  • Ossp Mm 1.1.3


References

MANDRAKE - MDKSA-2002:045

BID - 5352

REDHAT - RHSA-2003:158

REDHAT - RHSA-2002:163

SUSE - SuSE-SA:2002:028

XF - mm-tmpfile-symlink(9719)

DEBIAN - DSA-137

REDHAT - RHSA-2002:164

REDHAT - RHSA-2002:156

REDHAT - RHSA-2002:154

REDHAT - RHSA-2002:153

HP - HPSBTL0208-056

FREEBSD - FreeBSD-SN-02:05

CALDERA - CSSA-2002-032.0


Last Updated: 27 May 2016 10:37:00