Lucene search

[email protected]CVE-2000-1095

HistoryJan 09, 2001 - 5:00 a.m.

CVE-2000-1095

2001-01-0905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-1095

linux

modutils 2.3.x

modprobe

arbitrary commands

nvd

7.4 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.

CPENameOperatorVersion
conectiva:linuxconectiva linuxeq5.1
immunix:immuniximmunixeq6.2
immunix:immuniximmunixeq7.0_beta
mandrakesoft:mandrake_linuxmandrakesoft mandrake linuxeq7.2
redhat:linuxredhat linuxeq7.0
suse:suse_linuxsuse suse linuxeq7.0
suse:suse_linuxsuse suse linuxeq6.4

CPE	Name	Operator	Version
conectiva:linux	conectiva linux	eq	5.1
immunix:immunix	immunix	eq	6.2
immunix:immunix	immunix	eq	7.0_beta
mandrakesoft:mandrake_linux	mandrakesoft mandrake linux	eq	7.2
redhat:linux	redhat linux	eq	7.0
suse:suse_linux	suse suse linux	eq	7.0
suse:suse_linux	suse suse linux	eq	6.4

References

archives.neohapsis.com/archives/bugtraq/2000-11/0179.html

archives.neohapsis.com/archives/linux/suse/2000-q4/0596.html

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000340

www.debian.org/security/2000/20001120

www.linux-mandrake.com/en/security/MDKSA-2000-071-1.php3?dis=7.1

www.redhat.com/support/errata/RHSA-2000-108.html

www.securityfocus.com/bid/1936

exchange.xforce.ibmcloud.com/vulnerabilities/5516

7.4 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2000-1095

nessus1