Vulnerabilities > Joseph Allen > JOE > 2.9

DATE	CVE	VULNERABILITY TITLE	RISK
2002-12-31	CVE-2002-2334	Permissions, Privileges, and Access Controls vulnerability in Joseph Allen JOE Joe text editor 2.8 through 2.9.7 does not remove the group and user setuid bits for backup files, which could allow local users to execute arbitrary setuid and setgid root programs when root edits scripts owned by other users. local low complexity joseph-allen CWE-264	3.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.