Vulnerability Description
The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write permissions, which allows local users to gain root privileges or cause a denial of service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Solaris | 8.0 |
| Sun | Sunos | 5.8 |
Related Weaknesses (CWE)
References
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-48320-1Patch
- http://www.ciac.org/ciac/bulletins/n-010.shtml
- http://www.securityfocus.com/bid/6061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10495
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-48320-1Patch
- http://www.ciac.org/ciac/bulletins/n-010.shtml
- http://www.securityfocus.com/bid/6061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10495
FAQ
What is CVE-2002-1590?
CVE-2002-1590 is a vulnerability with a CVSS score of 7.2 (HIGH). The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with worl...
How severe is CVE-2002-1590?
CVE-2002-1590 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1590?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Solaris, Sun Sunos.