Vulnerabilities > CVE-2002-1669 - Unspecified vulnerability in Freebsd 4.2/4.3/4.4

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

freebsd

NVD

Published: 2002-12-31

Updated: 2017-07-11

Summary

pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.

Vulnerable Configurations

Part	Description	Count
OS	Freebsd Freebsd Freebsd 4.2 Freebsd Freebsd 4.3 Freebsd Freebsd 4.4	3

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:01.pkg_add.asc
http://www.securityfocus.com/bid/3819
https://exchange.xforce.ibmcloud.com/vulnerabilities/7852