Directory Permissions Vulnerability in PowerChute Plus by APC
CVE-2002-1924

Currently unrated

Key Information:

Vendor: Apc
Status: Powerchute
Vendor: CVE Published:; 31 December 2002

What is CVE-2002-1924?

PowerChute Plus 5.0.2 creates a shared directory named 'Pwrchute' during installation with world-writeable permissions. This misconfiguration could enable remote attackers to modify or create files within the directory, posing a significant risk to the integrity of the system. Ensuring appropriate directory permissions is crucial to prevent unauthorized access and maintain system security.

References

http://www.security.nnov.ru/news2064.html

x_refsource_MISC

http://www.iss.net/security_center/static/9413.php

vdb-entryx_refsource_XF

http://online.securityfocus.com/archive/1/277930

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002

CVE-2002-1924 Data

JSON

Apc

What is CVE-2002-1924?

References

Timeline