CVE-2002-2042

{"id": "CVE-2002-2042", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2002-12-31T05:00:00.000", "references": [{"url": "http://online.securityfocus.com/archive/1/275218", "source": "cve@mitre.org"}, {"url": "http://www.iss.net/security_center/static/9260.php", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/4919", "tags": ["Exploit"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes."}], "lastModified": "2008-09-05T20:32:10.823", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:qnx:rtos:4.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F05ACD69-8EEF-4D6B-A825-92051DFE9C4D"}, {"criteria": "cpe:2.3:a:qnx:rtos:6.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C37EB0A5-8A16-42A1-B229-BB223AAF9AA7"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}