CVE-2002-0512
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/08/2002
Last modified:
20/11/2024
Description
startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of other users running startkde via Trojan horse libraries.
Impact
Base Score 2.0
4.60
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:caldera:openlinux_server:3.1.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:caldera:openlinux_workstation:3.1.1:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.calderasystems.com/support/security/advisories/CSSA-2002-005.0.txt
- http://www.iss.net/security_center/static/8737.php
- http://www.securityfocus.com/bid/4400
- http://www.calderasystems.com/support/security/advisories/CSSA-2002-005.0.txt
- http://www.iss.net/security_center/static/8737.php
- http://www.securityfocus.com/bid/4400