Lucene search

[email protected]CVE-2000-0724

HistoryOct 20, 2000 - 4:00 a.m.

CVE-2000-0724

2000-10-2004:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

helix gnome

pre-installer

cve-2000-0724

symlink attack

file overwrite

local users

7.2 High

AI Score

Confidence

Low

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

The go-gnome Helix GNOME pre-installer allows local users to overwrite arbitrary files via a symlink attack on various files in /tmp, including uudecode, snarf, and some installer files.

CPENameOperatorVersion
helix_code:go-gnome_pre-installerhelix code go-gnome pre-installereq1.5

CPE	Name	Operator	Version
helix_code:go-gnome_pre-installer	helix code go-gnome pre-installer	eq	1.5

References

archives.neohapsis.com/archives/bugtraq/2000-08/0351.html

archives.neohapsis.com/archives/bugtraq/2000-08/0356.html

www.securityfocus.com/bid/1622

7.2 High

AI Score

Confidence

Low

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON