CVE Vulnerabilities

CVE-2002-0512

Published: Aug 12, 2002 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of other users running startkde via Trojan horse libraries.

Affected Software

Name Vendor Start Version End Version
Openlinux_workstation Caldera 3.1.1 3.1.1
Openlinux_server Caldera 3.1.1 3.1.1

References