CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-1301

rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.9%

CVSS Severity

CVSS v2 Score 1.2

References

http://archives.neohapsis.com/archives/bugtraq/2001-08/0093.html
http://savannah.gnu.org/cgi-bin/viewcvs/emacs/emacs/lib-src/rcs2log?only_with_tag=EMACS_PRETEST_21_0_95
http://www.iss.net/security_center/static/11210.php
http://archives.neohapsis.com/archives/bugtraq/2001-08/0093.html
http://savannah.gnu.org/cgi-bin/viewcvs/emacs/emacs/lib-src/rcs2log?only_with_tag=EMACS_PRETEST_21_0_95
http://www.iss.net/security_center/static/11210.php

Products affected by CVE-2001-1301

Gnu » Emacs » Version: 20.4

cpe:2.3:a:gnu:emacs:20.4
Xemacs » Xemacs » Version: 21.1.10

cpe:2.3:a:xemacs:xemacs:21.1.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-1301

Products

Pricing

Contact Us