CVE-2002-0662

Published Oct 4, 2002

Last updated 8 years ago

Overview

Description: scrollkeeper-get-cl in ScrollKeeper 0.3 to 0.3.11 allows local users to create and overwrite files via a symlink attack on the scrollkeeper-tempfile.x temporary files.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7FB5B0E1-E5CC-4E80-8E95-715D1EB5ADF4"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73C5F64D-B1E2-4C3A-8472-A5479B02DE82"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D482F314-8176-4D97-883F-DAA6A324300F"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DDE67216-5BF6-43F3-B616-24BBC23A2ABB"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE26906A-1F31-47BC-BAB7-7DCA1050265C"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA5090AD-E38C-4E86-811A-92DCA3252129"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB2E2CD6-385D-4E7A-809A-0994CFF648E1"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A077409B-CE7C-4CBB-9215-A4530625A4CF"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D18E80E6-33CE-4FA9-9AD4-AA0FFCB51EB6"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "034A6584-2ED3-487A-844D-6686752730FC"
          },
          {
            "criteria": "cpe:2.3:a:dan_mueth:scrollkeeper:0.3.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4C8881E-3BC5-41BD-A58D-6431CE66251F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References