← CVECheck
HomeVulnerabilities

CVE-2002-0246 — HIGH severity vulnerability (Format string vulnerability in the message catalog library f)

Format string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privileges by modifying the LC_MESSAGE environment variable to read other message catalogs containing format strings from setuid programs such as vxprint.

CVE IDCVE-2002-0246
SeverityHIGH
CVSS score7.2
CVSS vectorAV:L/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2002-05-29
Last modified2026-04-16
DescriptionFormat string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privileges by modifying the LC_MESSAGE environment variable to read other message catalogs containing format strings from setuid programs such as vxprint.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →