CVE-2002-0162
published 2002-03-27CVE-2002-0162: LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.
PriorityP418medium6.2CVSS 2.0
AVLACHAuNCCICAC
EXPLOIT
EPSS
0.77%
51.0th percentile
LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| logwatch | logwatch | <= 2.5 | — |
| logwatch | logwatch | — | — |
CVSS provenance
nvdv2.06.2MEDIUMAV:L/AC:H/Au:N/C:C/I:C/A:C
vendor_redhat6.2MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wh5q-mjqf-4gvx: LogWatch before 2
ghsa_unreviewed·2022-04-30
CVE-2002-0162 [MEDIUM] GHSA-wh5q-mjqf-4gvx: LogWatch before 2
LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.
GHSA
GHSA-ww2c-x68v-x95c: LogWatch 2
ghsa_unreviewed·2022-04-30·CVSS 6.2
CVE-2002-0165 [MEDIUM] GHSA-ww2c-x68v-x95c: LogWatch 2
LogWatch 2.5 allows local users to gain root privileges via a symlink attack, a different vulnerability than CVE-2002-0162.
Red Hat
security flaw
vendor_redhat·2002-04-03·CVSS 6.2
CVE-2002-0165 [MEDIUM] security flaw
security flaw
LogWatch 2.5 allows local users to gain root privileges via a symlink attack, a different vulnerability than CVE-2002-0162.
Red Hat
security flaw
vendor_redhat·2002-03-27·CVSS 6.2
CVE-2002-0162 [MEDIUM] security flaw
security flaw
LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.
No detection rules found.
Bugzilla
CVE-2002-0162 security flaw
bugzilla·2018-08-16·CVSS 6.2
CVE-2002-0162 [MEDIUM] CVE-2002-0162 security flaw
CVE-2002-0162 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.
Bugzilla
CVE-2002-0165 security flaw
bugzilla·2018-08-16·CVSS 6.2
CVE-2002-0165 [MEDIUM] CVE-2002-0165 security flaw
CVE-2002-0165 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
LogWatch 2.5 allows local users to gain root privileges via a symlink attack, a different vulnerability than CVE-2002-0162.
http://list.kaybee.org/archives/logwatch-announce/2002-March/000002.htmlhttp://marc.info/?l=bugtraq&m=101724766216872http://online.securityfocus.com/archive/82/264233http://www.iss.net/security_center/static/8652.phphttp://www.securityfocus.com/bid/4374http://list.kaybee.org/archives/logwatch-announce/2002-March/000002.htmlhttp://marc.info/?l=bugtraq&m=101724766216872http://online.securityfocus.com/archive/82/264233http://www.iss.net/security_center/static/8652.phphttp://www.securityfocus.com/bid/4374
2002-03-27
Published