CVE-2002-1844

Microsoft Windows Media Player (WMP) 6.3, when installed on Solaris, installs executables with world-writable permissions, which allows local users to delete or modify the executables to gain privileges.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:microsoft:windows_media_player:6.3:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*

History

08 Feb 2024, 15:50

Type Values Removed Values Added
CWE NVD-CWE-Other CWE-276
References (BUGTRAQ) http://archives.neohapsis.com/archives/bugtraq/2002-10/0260.html - (BUGTRAQ) http://archives.neohapsis.com/archives/bugtraq/2002-10/0260.html - Broken Link
References (XF) http://www.iss.net/security_center/static/10398.php - (XF) http://www.iss.net/security_center/static/10398.php - Broken Link
References (BID) http://www.securityfocus.com/bid/6003 - (BID) http://www.securityfocus.com/bid/6003 - Broken Link, Third Party Advisory, VDB Entry
First Time Oracle solaris
Oracle
CPE cpe:2.3:a:microsoft:windows_media_player:6.3:*:solaris:*:*:*:*:* cpe:2.3:a:microsoft:windows_media_player:6.3:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
CVSS v2 : 7.2
v3 : unknown
v2 : 7.2
v3 : 7.8

Information

Published : 2002-12-31 05:00

Updated : 2024-02-28 10:24


NVD link : CVE-2002-1844

Mitre link : CVE-2002-1844

CVE.ORG link : CVE-2002-1844


JSON object : View

Products Affected

microsoft

  • windows_media_player

oracle

  • solaris
CWE
CWE-276

Incorrect Default Permissions