Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2002-1245
maped
luxman
vulnerability
privilege escalation
local
cve-2002-1245
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
25.6%
Maped in LuxMan 0.41 uses the user-provided search path to find and execute the gzip program, which allows local users to modify /dev/mem and gain privileges via a modified PATH environment variable that points to a Trojan horse gzip program.
Affected configurations
Node
frank_mcingvaleluxmanMatch0.41
| CPE | Name | Operator | Version |
|---|---|---|---|
| frank_mcingvale:luxman | frank mcingvale luxman | eq | 0.41 |
Related
debian
debian
[SECURITY] [DSA 189-1] New luxman packages fix local root exploit
2002-11-06 17:10:06
[SECURITY] [DSA 189-1] New luxman packages fix local root exploit
2002-11-06 17:10:06
osv
osv
luxman - local root exploit
2002-11-06 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-189)
2008-01-17 00:00:00
Debian Security Advisory DSA 189-1 (luxman)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-189-1 : luxman - local root exploit
2004-09-29 00:00:00
cvelist
cvelist
CVE-2002-1245
2004-09-01 04:00:00
nvd
nvd
CVE-2002-1245
2002-11-12 05:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
25.6%
Related for CVE-2002-1245