CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2221

Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd 2.4.1 and earlier allows local users to gain privileges via a modified PATH that references a malicious cp binary. NOTE: this issue might overlap CVE-2006-6639.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.5%

CVSS Severity

CVSS v2 Score 6.2

References

http://secunia.com/advisories/23024
http://securitytracker.com/id?1005847
http://www.securityfocus.com/bid/21644
http://secunia.com/advisories/23024
http://securitytracker.com/id?1005847
http://www.securityfocus.com/bid/21644

Products affected by CVE-2002-2221

Chetcpasswd » Chetcpasswd » Version: 2.3.1

cpe:2.3:a:chetcpasswd:chetcpasswd:2.3.1
Chetcpasswd » Chetcpasswd » Version: 2.3.3

cpe:2.3:a:chetcpasswd:chetcpasswd:2.3.3
Chetcpasswd » Chetcpasswd » Version: 2.4.1

cpe:2.3:a:chetcpasswd:chetcpasswd:2.4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2221

Products

Pricing

Contact Us