CVE-2002-0499

Published: Jun 11, 2002

Modified: Aug 8, 2024

PUBLISHED

Description

The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and earlier, truncates long pathnames without generating an error, which could allow local users to force programs to perform inappropriate operations on the wrong directories.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20020326 [VulnWatch] d_path() truncating excessive long path name vulnerability

mailing-list

x_refsource_VULNWATCH

linux-dpath-truncate-path(8634)

vdb-entry

x_refsource_XF

4367

vdb-entry

x_refsource_BID

http://www.cs.helsinki.fi/linux/linux-kernel/2002-13/0054.html

x_refsource_MISC

20020326 d_path() truncating excessive long path name vulnerability

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2002-0499

Description

Affected Products

References