Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0052

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2000-0052
Last Modified 10 Sep 2008 03:02:40
Published 04 Jan 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0052

Summary

Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.

Vulnerable Systems

Operating System

  • Mandrakesoft Mandrake Linux 6.0

  • Mandrakesoft Mandrake Linux 6.1

  • Redhat Linux 6.0

  • Redhat Linux 6.1

  • Turbolinux 3.5b2

  • Turbolinux 4.2

  • Turbolinux 4.4

  • Turbolinux 6.0.2


References

XF - linux-pam-userhelper

BID - 913

REDHAT - RHSA-2000:001

L0PHT - 20000104 PamSlam


Last Updated: 27 May 2016 10:35:32