CVE-2002-0178

uudecode, as available in the sharutils package before 4.2.1, does not check whether the filename of the uudecoded file is a pipe or symbolic link, which could allow attackers to overwrite files or execute commands.
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:sharutils:4.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2002-05-29 04:00

Updated : 2024-02-28 10:24


NVD link : CVE-2002-0178

Mitre link : CVE-2002-0178

CVE.ORG link : CVE-2002-0178


JSON object : View

Products Affected

gnu

  • sharutils