Lucene search

[email protected]CVE-2000-1043

HistoryDec 11, 2000 - 5:00 a.m.

CVE-2000-1043

2000-12-1105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-1043

ypserv

linux

mandrake 7.1

root privileges

format string vulnerability

7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.039 Low

EPSS

Percentile

91.8%

JSON

Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.

CPENameOperatorVersion
mandrakesoft:mandrake_linuxmandrakesoft mandrake linuxeq7.0
mandrakesoft:mandrake_linuxmandrakesoft mandrake linuxeq7.1
mandrakesoft:mandrake_linuxmandrakesoft mandrake linuxeq6.1

CPE	Name	Operator	Version
mandrakesoft:mandrake_linux	mandrakesoft mandrake linux	eq	7.0
mandrakesoft:mandrake_linux	mandrakesoft mandrake linux	eq	7.1
mandrakesoft:mandrake_linux	mandrakesoft mandrake linux	eq	6.1

References

www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1

exchange.xforce.ibmcloud.com/vulnerabilities/5731

7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.039 Low

EPSS

Percentile

91.8%

JSON

Related for CVE-2000-1043

nessus1