← Back to CVEs
CVE-2002-0542
N/ADescription
mail in OpenBSD 2.9 and 3.0 processes a tilde (~) escape character in a message even when it is not in interactive mode, which could allow local users to gain root privileges via calls to mail in cron.
CVE Details
CVSS v3.1 ScoreN/A
Published7/3/2002
Last Modified4/16/2026
Sourcenvd
Honeypot Sightings0
Affected Products
openbsd:openbsd
References
http://marc.info/?l=bugtraq&m=101855467811695&w=2(cve@mitre.org)
http://online.securityfocus.com/archive/1/267089(cve@mitre.org)
http://www.iss.net/security_center/static/8818.php(cve@mitre.org)
http://www.openbsd.org/errata30.html#mail(cve@mitre.org)
http://www.osvdb.org/5269(cve@mitre.org)
http://www.securityfocus.com/bid/4495(cve@mitre.org)
http://marc.info/?l=bugtraq&m=101855467811695&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://online.securityfocus.com/archive/1/267089(af854a3a-2127-422b-91ae-364da2661108)
http://www.iss.net/security_center/static/8818.php(af854a3a-2127-422b-91ae-364da2661108)
http://www.openbsd.org/errata30.html#mail(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/5269(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/4495(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.