PT-2002-1247 · Red Hat · Red Hat+1

Published

2002-05-29

Updated

2008-09-11

CVE-2002-0169

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions DocBook on Red Hat Linux versions 6.2 through 7.2

Description The default stylesheet for DocBook has an insecure option enabled, allowing users to potentially overwrite files outside the current directory from an untrusted document by using a full pathname as an element identifier.

Recommendations For Red Hat Linux versions 6.2 through 7.2, consider disabling the insecure option in the default stylesheet for DocBook to prevent potential file overwrites.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0169

Affected Products

Docbook

Red Hat

PT-2002-1247 · Red Hat · Red Hat+1

CVE-2002-0169

Related Identifiers

Affected Products

References · 6