Lucene search

[email protected]NVD:CVE-2000-0052

HistoryJan 04, 2000 - 5:00 a.m.

CVE-2000-0052

2000-01-0405:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

Percentile

0.4%

JSON

Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a … (dot dot) attack.

Affected configurations

NVD

Node

mandrakesoftmandrake_linuxMatch6.0

mandrakesoftmandrake_linuxMatch6.1

redhatlinuxMatch6.0i386

redhatlinuxMatch6.1i386

turbolinuxturbolinuxMatch3.5b2

turbolinuxturbolinuxMatch4.2

turbolinuxturbolinuxMatch4.4

turbolinuxturbolinuxMatch6.0.2

References

www.l0pht.com/advisories/pam_advisory

www.redhat.com/support/errata/RHSA-2000-001.html

www.securityfocus.com/bid/913

xforce.iss.net/search.php3?type=2&pattern=linux-pam-userhelper

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

Percentile

0.4%

JSON

Related for NVD:CVE-2000-0052

cve1 cvelist1