CVE-2002-0178

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
29/05/2002
Last modified:
03/04/2025

Description

uudecode, as available in the sharutils package before 4.2.1, does not check whether the filename of the uudecoded file is a pipe or symbolic link, which could allow attackers to overwrite files or execute commands.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:gnu:sharutils:4.2:*:*:*:*:*:*:*