Vulnerabilities > CVE-2002-0512 - Unspecified vulnerability in Caldera Openlinux Server and Openlinux Workstation

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
caldera

Summary

startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of other users running startkde via Trojan horse libraries.

Vulnerable Configurations

Part Description Count
Application
Caldera
2