CVE-2002-1601

high

Description

The Connectables feature in Adobe PhotoDeluxe 3.1 prepends the Adobe directory to the CLASSPATH environment variable, which allows applets to run with higher privileges and remote attackers to gain privileges via an HTML e-mail message or a web page.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/8210

http://www.securityfocus.com/bid/4106

http://www.kb.cert.org/vuls/id/AAMN-56LQ2J

http://www.kb.cert.org/vuls/id/116875

Details

Source: Mitre, NVD

Published: 2002-02-09

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 5.1

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.03018