← CVECheck
HomeVulnerabilities

CVE-2002-2382 — HIGH severity vulnerability (cvsupd.sh in CVSup 1.2 allows local users to overwrite arbit)

cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/tmp/cvsupd.out.

CVE IDCVE-2002-2382
SeverityHIGH
CVSS score7.2
CVSS vectorAV:L/AC:L/Au:N/C:C/I:C/A:C
CWECWE-59
StatusModified
Published2002-12-31
Last modified2026-04-16
Descriptioncvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/tmp/cvsupd.out.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →