CVE-2002-0169

high

Description

The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which could allow users to overwrite files outside of the current directory from an untrusted document by using a full pathname as an element identifier.

References

http://www.securityfocus.com/bid/4654

http://www.redhat.com/support/errata/RHSA-2002-062.html

http://www.osvdb.org/5349

http://www.iss.net/security_center/static/8983.php

http://online.securityfocus.com/advisories/4095

Details

Source: Mitre, NVD

Published: 2002-05-29

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Severity: High

EPSS

EPSS: 0.0008