Vulnerability Details : CVE-2002-0662
scrollkeeper-get-cl in ScrollKeeper 0.3 to 0.3.11 allows local users to create and overwrite files via a symlink attack on the scrollkeeper-tempfile.x temporary files.
Exploit prediction scoring system (EPSS) score for CVE-2002-0662
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2002-0662
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:N/I:P/A:N |
3.9
|
2.9
|
NIST |
References for CVE-2002-0662
-
http://www.debian.org/security/2002/dsa-160
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/5602
-
http://www.redhat.com/support/errata/RHSA-2002-186.html
Patch;Vendor Advisory
-
http://www.iss.net/security_center/static/10002.php
-
http://marc.info/?l=bugtraq&m=103115387102294&w=2
-
http://marc.info/?l=bugtraq&m=103098575826031&w=2
Products affected by CVE-2002-0662
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.10:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.11:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.9:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:dan_mueth:scrollkeeper:0.3.8:*:*:*:*:*:*:*