admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2002/CVE-2002-07xx/CVE-2002-0759.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

148 lines
4.8 KiB
JSON
Raw Blame History

{
"id": "CVE-2002-0759",
"sourceIdentifier": "cve@mitre.org",
"published": "2002-08-12T04:00:00.000",
"lastModified": "2008-09-05T20:28:52.600",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, does not use the O_EXCL flag to create files during decompression and does not warn the user if an existing file would be overwritten, which could allow attackers to overwrite files via a bzip2 archive."
},
{
"lang": "es",
"value": "bzip2 anteriores a 1.0.2 en FreeBSD 4.5 y anteriores, y otros Sistemas Operativos, no usan la etiqueta O_EXCL para crear ficheros durante la descomprensi\u00f3n y no alertan al usuario de que un fichero ya existente podr\u00eda ser sobreescrito, lo cual podr\u00eda permitir a atacantes remotos la sobreescritura de ficheros mediante un archivo bzip2."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 5.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "325C63C7-740D-42E1-B8B1-51125DE57F61"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.0a:*:*:*:*:*:*:*",
"matchCriteriaId": "550690C7-32D0-4126-B272-D2254A2EF434"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.0b:*:*:*:*:*:*:*",
"matchCriteriaId": "DFE746CF-6890-4259-A9DB-5F77B592D1E9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.0c:*:*:*:*:*:*:*",
"matchCriteriaId": "6C95FE39-842A-45D1-A858-D438C0C15B99"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.5a:*:*:*:*:*:*:*",
"matchCriteriaId": "D8AD6CE9-FCE5-4926-A1D1-0706DFE4A6D4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.5b:*:*:*:*:*:*:*",
"matchCriteriaId": "D54DD36D-7A6C-4649-855A-D81F29FFB6C9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.5c:*:*:*:*:*:*:*",
"matchCriteriaId": "0B87D623-6CF8-4BDB-A9FB-CF07589AF1CB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:0.9.5d:*:*:*:*:*:*:*",
"matchCriteriaId": "5FE3BFE7-75B6-4284-9EDC-78D452CD9174"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B10B3BF9-BE42-468D-89E8-8D4A5FEDC734"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bzip:bzip2:1.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E55F00B1-D48B-40A6-872F-959598D7E6E4"
}
]
}
]
}
],
"references": [
{
"url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-039.0.txt",
"source": "cve@mitre.org"
},
{
"url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:25.bzip2.asc",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.iss.net/security_center/static/9126.php",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.securityfocus.com/bid/4774",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink