Lucene search

[email protected]CVE-2000-1134

HistoryJan 09, 2001 - 5:00 a.m.

CVE-2000-1134

2001-01-0905:00:00

[email protected]

web.nvd.nist.gov

unix

shell programs

vulnerability

local user

overwrite

symlink attack

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.

Affected configurations

NVD

Node

immuniximmunixMatch6.2

conectivalinuxMatch4.0

conectivalinuxMatch4.0es

conectivalinuxMatch4.1

conectivalinuxMatch4.2

conectivalinuxMatch5.0

conectivalinuxMatch5.1

Node

calderaopenlinux

calderaopenlinux_edesktopMatch2.4

calderaopenlinux_eserverMatch2.3

hphp-uxMatch11.11

mandrakesoftmandrake_linuxMatch6.0

mandrakesoftmandrake_linuxMatch6.1

mandrakesoftmandrake_linuxMatch7.0

mandrakesoftmandrake_linuxMatch7.1

mandrakesoftmandrake_linuxMatch7.2

redhatlinuxMatch5.2

redhatlinuxMatch6.0

redhatlinuxMatch6.1

redhatlinuxMatch6.2

redhatlinuxMatch6.2e

susesuse_linuxMatch7.0

CPENameOperatorVersion
immunix:immuniximmunixeq6.2
conectiva:linuxconectiva linuxeq4.0
conectiva:linuxconectiva linuxeq4.0es
conectiva:linuxconectiva linuxeq4.1
conectiva:linuxconectiva linuxeq4.2
conectiva:linuxconectiva linuxeq5.0
conectiva:linuxconectiva linuxeq5.1

CPE	Name	Operator	Version
immunix:immunix	immunix	eq	6.2
conectiva:linux	conectiva linux	eq	4.0
conectiva:linux	conectiva linux	eq	4.0es
conectiva:linux	conectiva linux	eq	4.1
conectiva:linux	conectiva linux	eq	4.2
conectiva:linux	conectiva linux	eq	5.0
conectiva:linux	conectiva linux	eq	5.1

References

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:76.tcsh-csh.asc

ftp://patches.sgi.com/support/free/security/advisories/20011103-02-P

archives.neohapsis.com/archives/bugtraq/2000-10/0418.html

archives.neohapsis.com/archives/tru64/2002-q1/0009.html

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000350

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000354

marc.info/?l=bugtraq&m=97561816504170&w=2

www.calderasystems.com/support/security/advisories/CSSA-2000-042.0.txt

www.calderasystems.com/support/security/advisories/CSSA-2000-043.0.txt

www.debian.org/security/2000/20001111a

www.kb.cert.org/vuls/id/10277

www.linux-mandrake.com/en/security/MDKSA-2000-069.php3

www.linux-mandrake.com/en/security/MDKSA-2000-075.php3

www.redhat.com/support/errata/RHSA-2000-117.html

www.redhat.com/support/errata/RHSA-2000-121.html

www.securityfocus.com/archive/1/146657

www.securityfocus.com/bid/1926

www.securityfocus.com/bid/2006

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4047

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2000-1134

nessus1 openvas4 nvd1 cert1 cvelist1