Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0757

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2000-0757
Last Modified 05 Sep 2008 04:21:48
Published 20 Oct 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0757

Summary

The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.

Vulnerable Systems

Application

  • Aptis Software Totalbill 3.0


References

BID - 1555

BUGTRAQ - 20000808 Exploit for Totalbill...


Last Updated: 27 May 2016 10:35:52