Lucene search

[email protected]CVE-2000-0997

HistoryDec 19, 2000 - 5:00 a.m.

CVE-2000-0997

2000-12-1905:00:00

[email protected]

web.nvd.nist.gov

openbsd

netbsd

root privileges

cve-2000-0997

format string vulnerabilities

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

20.5%

JSON

Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges.

Affected configurations

NVD

Node

netbsdnetbsdMatch1.4

netbsdnetbsdMatch1.4.1

netbsdnetbsdMatch1.4.2

openbsdopenbsdMatch2.3

openbsdopenbsdMatch2.4

openbsdopenbsdMatch2.5

openbsdopenbsdMatch2.6

openbsdopenbsdMatch2.7

CPENameOperatorVersion
netbsd:netbsdnetbsdeq1.4
netbsd:netbsdnetbsdeq1.4.1
netbsd:netbsdnetbsdeq1.4.2
openbsd:openbsdopenbsdeq2.3
openbsd:openbsdopenbsdeq2.4
openbsd:openbsdopenbsdeq2.5
openbsd:openbsdopenbsdeq2.6
openbsd:openbsdopenbsdeq2.7

CPE	Name	Operator	Version
netbsd:netbsd	netbsd	eq	1.4
netbsd:netbsd	netbsd	eq	1.4.1
netbsd:netbsd	netbsd	eq	1.4.2
openbsd:openbsd	openbsd	eq	2.3
openbsd:openbsd	openbsd	eq	2.4
openbsd:openbsd	openbsd	eq	2.5
openbsd:openbsd	openbsd	eq	2.6
openbsd:openbsd	openbsd	eq	2.7

References

ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch

www.securityfocus.com/bid/1752

exchange.xforce.ibmcloud.com/vulnerabilities/5337

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

20.5%

JSON

Related for CVE-2000-0997

cvelist1 nvd1