CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2001

jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.6%

CVSS Severity

CVSS v2 Score 1.2

References

http://www.iss.net/security_center/static/7980.php
http://www.mandriva.com/security/advisories?name=MDKSA-2002:008
http://www.securityfocus.com/bid/3940
http://www.iss.net/security_center/static/7980.php
http://www.mandriva.com/security/advisories?name=MDKSA-2002:008
http://www.securityfocus.com/bid/3940

Products affected by CVE-2002-2001

Jmcce » Jmcce » Version: 1.3.8

cpe:2.3:a:jmcce:jmcce:1.3.8
Mandrakesoft » Mandrake Linux » Version: 8.1

cpe:2.3:o:mandrakesoft:mandrake_linux:8.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2001

Products

Pricing

Contact Us