CVE-ID

CVE-2002-0162

• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Date Entry Created
20020328 Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (20020817-01)
Votes (Legacy)
ACCEPT(4) Armstrong, Cole, Cox, Green
MODIFY(1) Frech
NOOP(3) Christey, Foat, Wall
Comments (Legacy)
 Christey> Modify the desc: it's temporary *directory* creation.
   
   XF:logwatch-tmp-race-condition(8652)
   URL:http://www.iss.net/security_center/static/8652.php
   BID:4374
   URL:http://online.securityfocus.com/bid/4374
 Frech> XF:logwatch-tmp-race-condition(8652)

Proposed (Legacy)
20020502
This is an entry on the CVE list, which standardizes names for security problems.