4.6
CVE-2002-0169
- EPSS 0.41%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:55
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which could allow users to overwrite files outside of the current directory from an untrusted document by using a full pathname as an element identifier.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Redhat ≫ Docbook Stylesheets Version1.54.13
Redhat ≫ Docbook Utils Version0.6.9-2
Redhat ≫ Docbook Utils Version0.6.13
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.41% | 0.322 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
http://online.securityfocus.com/advisories/4095
http://www.iss.net/security_center/static/8983.php
http://www.osvdb.org/5349
http://www.redhat.com/support/errata/RHSA-2002-062.html
http://www.securityfocus.com/bid/4654