Vulnerabilities > CVE-2002-1253 - Local Security vulnerability in Abuse

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

abuse

NVD

Published: 2002-11-12

Updated: 2008-09-05

Summary

Abuse 2.00 and earlier allows local users to gain privileges via command line arguments that specify alternate Lisp scripts that run at escalated privileges, which can contain functions that execute commands or modify files.

Vulnerable Configurations

Part	Description	Count
Application	Abuse Abuse Abuse *	1

References

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0055.html
http://www.idefense.com/advisory/11.01.02.txt
http://www.iss.net/security_center/static/11300.php