Lucene search

[email protected]CVE-2000-0976

HistoryDec 19, 2000 - 5:00 a.m.

CVE-2000-0976

2000-12-1905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

xfree 3.3.x

xlib

buffer overflow

local users

arbitrary commands

cve-2000-0976

7.7 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

0.4%

JSON

Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command line parameter.

CPENameOperatorVersion
xfree86_project:xlibxfree86 project xlibeq3.3x

CPE	Name	Operator	Version
xfree86_project:xlib	xfree86 project xlib	eq	3.3x

References

ftp://patches.sgi.com/support/free/security/advisories/20020502-01-I

archives.neohapsis.com/archives/bugtraq/2000-10/0211.html

www.iss.net/security_center/static/5751.php

www.securityfocus.com/bid/1805

7.7 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2000-0976

securityvulns1