Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0722

Overview

Vulnerability Score 6.2 6.2
CVE Id CVE-2000-0722
Last Modified 05 Sep 2008 04:21:43
Published 20 Oct 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2000-0722

Summary

Helix GNOME Updater helix-update 0.5 and earlier allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages.

Vulnerable Systems

Application

  • Helix Code Gnome Updater 0.1

  • Helix Code Gnome Updater 0.2

  • Helix Code Gnome Updater 0.3

  • Helix Code Gnome Updater 0.4

  • Helix Code Gnome Updater 0.5


References

BID - 1593

BUGTRAQ - 20000820 [Helix Beta] Helix Code Security Advisory - Helix GNOME Installer

BUGTRAQ - 20000820 Helix Code Security Advisory - Helix GNOME Update

BUGTRAQ - 20000819 Multiple Local Vulnerabilities in Helix Gnome Installer


Last Updated: 27 May 2016 10:35:50