CVE-2002-1669
FreeBSD 4.2-4.4 - Unprotected Temporary Directory Permissions
Title source: llmDescription
pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.
References (3)
Core 3
Core References
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3819
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/7852
Patch, Vendor Advisory vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:01.pkg_add.asc
Scores
EPSS
0.0005
EPSS Percentile
15.9%
Details
Status
published
Products (3)
freebsd/freebsd
4.2
freebsd/freebsd
4.3
freebsd/freebsd
4.4
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026