Vulnerability Database

296,202

Total vulnerabilities in the database

CVE-2002-0469

Ecartis (formerly Listar) 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setuid-root, "lock-to-user" is not set, and ecartis is called by certain MTA's, which could allow local users to gain privileges.

  • Published: Aug 12, 2002
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-0469
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
listar / listar 0.129a 0.129a.x
ecartis / ecartis 1.0.0_snapshot_2002-01-25 1.0.0_snapshot_2002-01-25.x
listar / listar 0.126a 0.126a.x
ecartis / ecartis 1.0.0_snapshot_2002-01-21 1.0.0_snapshot_2002-01-21.x
listar / listar 0.127a 0.127a.x