CVE-2002-0762 — Linux vulnerability

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.2%

top 64.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Suse Linux

Timeline

PublishedAug 12

Latest updateApr 30

Description

shadow package in SuSE 8.0 allows local users to destroy the /etc/passwd and /etc/shadow files or assign extra group privileges to some users by changing filesize limits before calling programs that modify the files.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDsuse/suse_linux8.0

Patches

Patch: www.iss.net ↗Patch: www.securityfocus.com ↗Patch: www.iss.net ↗

🔴Vulnerability Details

GHSA

GHSA-2v97-g8xf-h43c: shadow package in SuSE 8↗2022-04-30

▶

CVEList

CVE-2002-0762: shadow package in SuSE 8↗2003-04-02

▶