Lucene search

[email protected]CVE-2000-1213

HistoryAug 31, 2002 - 4:00 a.m.

CVE-2000-1213

2002-08-3104:00:00

[email protected]

web.nvd.nist.gov

cve-2000-1213

ping

iputils

red hat linux

privileges

raw socket

vulnerability

exposure

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.6%

JSON

ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping’s exposure to bugs that otherwise would occur at lower privileges.

Affected configurations

NVD

Node

immuniximmunixMatch6.2

iputilsiputilsRange≤2000-10-10

Node

redhatlinuxMatch6.2alpha

redhatlinuxMatch6.2i386

redhatlinuxMatch6.2sparc

redhatlinuxMatch7.0

CPENameOperatorVersion
immunix:immuniximmunixeq6.2
iputils:iputilsiputilsle2000-10-10

CPE	Name	Operator	Version
immunix:immunix	immunix	eq	6.2
iputils:iputils	iputils	le	2000-10-10

References

archives.neohapsis.com/archives/bugtraq/2000-10/0429.html

marc.info/?l=bugtraq&m=97249980727834&w=2

www.redhat.com/support/errata/RHSA-2000-087.html

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.6%

JSON

Related for CVE-2000-1213

cvelist1 nvd1