Vulnerabilities > CVE-2002-0265 - Unspecified vulnerability in Sawmill

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

sawmill

exploit available

NVD

Published: 2002-05-29

Updated: 2024-11-20

Summary

Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file.

Vulnerable Configurations

Part	Description	Count
Application	Sawmill Sawmill Sawmill 6.2.10 Sawmill Sawmill 6.2.3 Sawmill Sawmill 6.2.7 Sawmill Sawmill 6.2.6 Sawmill Sawmill 6.2.5 Sawmill Sawmill 6.2.8A Sawmill Sawmill 6.2 Sawmill Sawmill 6.2.14 Sawmill Sawmill 6.2.2 Sawmill Sawmill 6.2.9 Sawmill Sawmill 6.2.12 Sawmill Sawmill 6.2.13 Sawmill Sawmill 6.2.8 Sawmill Sawmill 6.2.11 Sawmill Sawmill 6.2.1 Sawmill Sawmill 6.2.4	16

Exploit-Db

description	Sawmill 6.2.x AdminPassword Insecure Default Permissions Vulnerability. CVE-2002-0265 . Local exploits for multiple platform
id	EDB-ID:21288
last seen	2016-02-02
modified	2002-02-11
published	2002-02-11
reporter	darky0da
source	https://www.exploit-db.com/download/21288/
title	Sawmill 6.2.x AdminPassword Insecure Default Permissions Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References