CVE-2002-0169
First published: Wed May 29 2002(Updated: )
The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which could allow users to overwrite files outside of the current directory from an untrusted document by using a full pathname as an element identifier.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redhat Docbook Utils | =0.6.13 | |
| Redhat Docbook Utils | =0.6.9-2 | |
| Redhat Docbook Stylesheets | =1.54.13 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/redhat
- canonical/redhat docbook utils
- version/redhat docbook utils/0.6.13
- version/redhat docbook utils/0.6.9-2
- canonical/redhat docbook stylesheets
- version/redhat docbook stylesheets/1.54.13