← back
CVE-2002-1669

CVE-2002-1669

EPSS 0.3%
pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:01.pkg_add.aschttps://exchange.xforce.ibmcloud.com/vulnerabilities/7852http://www.securityfocus.com/bid/3819