CVE-2002-0211
published 2002-05-16CVE-2002-0211: Race condition in the installation script for Tarantella Enterprise 3 3.01 through 3.20 creates a world-writeable temporary "gunzip" program before executing…
PriorityP419medium6.2CVSS 2.0
AVLACHAuNCCICAC
EXPLOIT
EPSS
0.89%
54.7th percentile
Race condition in the installation script for Tarantella Enterprise 3 3.01 through 3.20 creates a world-writeable temporary "gunzip" program before executing it, which could allow local users to execute arbitrary commands by modifying the program before it is executed.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tarantella | tarantella_enterprise | — | — |
| tarantella | tarantella_enterprise | — | — |
| tarantella | tarantella_enterprise | — | — |
| tarantella | tarantella_enterprise | — | — |
| tarantella | tarantella_enterprise | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=101208650722179&w=2http://online.securityfocus.com/archive/1/265845http://www.iss.net/security_center/static/7996.phphttp://www.securityfocus.com/bid/3966http://www.tarantella.com/security/bulletin-04.htmlhttp://marc.info/?l=bugtraq&m=101208650722179&w=2http://online.securityfocus.com/archive/1/265845http://www.iss.net/security_center/static/7996.phphttp://www.securityfocus.com/bid/3966http://www.tarantella.com/security/bulletin-04.html
2002-05-16
Published