Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2002-0795 | First vendor Publication | 2002-08-12 |
| Vendor | Cve | Last vendor Modification | 2024-11-20 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:L/AC:L/Au:N/C:N/I:P/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 2.1 | Attack Range | Local |
| Cvss Impact Score | 2.9 | Attack Complexity | Low |
| Cvss Expoit Score | 3.9 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The rc system startup script for FreeBSD 4 through 4.5 allows local users to delete arbitrary files via a symlink attack on X Windows lock files. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0795 |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Os | 2 |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 5083 | FreeBSD /etc/rc Symlink Delete Arbitrary File FreeBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user creates a directory named .X11-unix in /tmp (if it does not exist) and symbolically links this directory to an arbitrary directory of his or her choosing. The FreeBSD rc startup script will traverse the symbolic link and delete the malicious user's chosen directory. This flaw may lead to a loss of integrity. |
Sources (Detail)
| Source | Url |
|---|
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:23:52 |
|
| 2024-11-28 12:05:06 |
|
| 2021-05-04 12:01:43 |
|
| 2021-04-22 01:01:51 |
|
| 2020-05-23 00:15:01 |
|
| 2016-06-28 14:59:24 |
|
| 2013-05-11 12:10:42 |
|
