CVE-2002-0512

startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of other users running startkde via Trojan horse libraries.

Published: Aug 12, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0512
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
caldera / openlinux_workstation	3.1.1	3.1.1.x
caldera / openlinux_server	3.1.1	3.1.1.x

http://www.calderasystems.com/support/security/advisories/CSSA-2002-005.0.txt
http://www.iss.net/security_center/static/8737.php
http://www.securityfocus.com/bid/4400

Vulnerability Database

289,599

CVE-2002-0512