Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2000-0666
HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0666

2000-10-1304:00:00
[email protected]
web.nvd.nist.gov
131
linux
rpc.statd
nfs-utils
remote attackers
root privileges
cve-2000-0666
nvd

9.6 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.081 Low

EPSS

Percentile

94.3%

JSON

rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges.

Affected configurations

NVD
Node
conectivalinuxMatch4.0
OR
conectivalinuxMatch4.0es
OR
conectivalinuxMatch4.1
OR
conectivalinuxMatch4.2
OR
conectivalinuxMatch5.0
OR
conectivalinuxMatch5.1
Node
debiandebian_linuxMatch2.2
OR
debiandebian_linuxMatch2.2alpha
OR
debiandebian_linuxMatch2.2powerpc
OR
debiandebian_linuxMatch2.2sparc
OR
debiandebian_linuxMatch2.3
OR
debiandebian_linuxMatch2.3alpha
OR
debiandebian_linuxMatch2.3powerpc
OR
debiandebian_linuxMatch2.3sparc
OR
redhatlinuxMatch6.0alpha
OR
redhatlinuxMatch6.0i386
OR
redhatlinuxMatch6.0sparc
OR
redhatlinuxMatch6.1alpha
OR
redhatlinuxMatch6.1i386
OR
redhatlinuxMatch6.1sparc
OR
redhatlinuxMatch6.2alpha
OR
redhatlinuxMatch6.2i386
OR
redhatlinuxMatch6.2sparc
OR
susesuse_linuxMatch6.3
OR
susesuse_linuxMatch6.3ppc
OR
susesuse_linuxMatch6.3alpha
OR
susesuse_linuxMatch6.4
OR
susesuse_linuxMatch6.4ppc
OR
susesuse_linuxMatch6.4alpha
OR
susesuse_linuxMatch7.0
OR
trustixsecure_linuxMatch1.0
OR
trustixsecure_linuxMatch1.1

Related

nvd 1
nessus 3
cvelist 1
cert 1
openvas 1
redhatcve 1
nvd
nvd
CVE-2000-0666
2000-07-16 04:00:00
nessus
nessus
Mandrake Linux Security Advisory : nfs-utils (MDKSA-2000:021)
2012-09-06 00:00:00
Linux Multiple statd Packages Remote Format String
2000-11-10 00:00:00
Red Hat Enterprise Linux fixes
2004-07-06 00:00:00
cvelist
cvelist
CVE-2000-0666
2000-10-13 04:00:00
cert
cert
rpc.statd vulnerable to remote root compromise via format string stack overwrite
2000-10-30 00:00:00
openvas
openvas
Nfs-utils rpc.statd Multiple Remote Format String Vulnerabilities
2011-09-09 00:00:00
redhatcve
redhatcve
CVE-2000-0800
2015-10-30 09:48:12

9.6 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.081 Low

EPSS

Percentile

94.3%

JSON
Related for CVE-2000-0666
nvd1nessus3cvelist1cert1openvas1redhatcve1