CVE-2002-0542
published 2002-07-03CVE-2002-0542: mail in OpenBSD 2.9 and 3.0 processes a tilde (~) escape character in a message even when it is not in interactive mode, which could allow local users to gain…
PriorityP425high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.53%
71.7th percentile
mail in OpenBSD 2.9 and 3.0 processes a tilde (~) escape character in a message even when it is not in interactive mode, which could allow local users to gain root privileges via calls to mail in cron.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| openbsd | openbsd | — | — |
| openbsd | openbsd | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=101855467811695&w=2http://online.securityfocus.com/archive/1/267089http://www.iss.net/security_center/static/8818.phphttp://www.openbsd.org/errata30.html#mailhttp://www.osvdb.org/5269http://www.securityfocus.com/bid/4495http://marc.info/?l=bugtraq&m=101855467811695&w=2http://online.securityfocus.com/archive/1/267089http://www.iss.net/security_center/static/8818.phphttp://www.openbsd.org/errata30.html#mailhttp://www.osvdb.org/5269http://www.securityfocus.com/bid/4495
2002-07-03
Published