CVE-2002-2221

Medium

6.2/10

Summary

Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd 2.4.1 and earlier allows local users to gain privileges via a modified PATH that references a malicious cp binary. NOTE: this issue might overlap CVE-2006-6639.

Access Complexity: HIGH
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Dec 31, 2002

CVE-2002-2221

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS