Vulnerability Details : CVE-2002-0512
startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of other users running startkde via Trojan horse libraries.
Exploit prediction scoring system (EPSS) score for CVE-2002-0512
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2002-0512
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.6
|
MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
3.9
|
6.4
|
NIST |
References for CVE-2002-0512
Products affected by CVE-2002-0512
- cpe:2.3:a:caldera:openlinux_server:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:caldera:openlinux_workstation:3.1.1:*:*:*:*:*:*:*