CVE-2002-0162

LogWatch <2.5 - RCE

Title source: llm

Description

LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.

Exploits (1)

exploitdb WORKING POC VERIFIED

by spybreak · bashlocallinux

https://www.exploit-db.com/exploits/21356

View Code ZIP pw:eip

References (5)

[Various Sources] http://list.kaybee.org/archives/logwatch-announce/2002-March/000002.html

[Third Party Advisory, VDB Entry] http://online.securityfocus.com/archive/82/264233

[Third Party Advisory] http://www.iss.net/security_center/static/8652.php

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/4374

[Mailing List] http://marc.info/?l=bugtraq&m=101724766216872

Scores

EPSS 0.0031

EPSS Percentile 54.2%

Details

Status published

Products (1)

logwatch/logwatch < 2.5

Published Mar 27, 2002

Tracked Since Feb 18, 2026