Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0949

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2000-0949
Last Modified 05 Sep 2008 04:22:16
Published 19 Dec 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0949

Summary

Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option.

Vulnerable Systems

Operating System

  • Sun Solaris 2.5.1

Application

  • Lbl Traceroute 1.4a5


References

XF - traceroute-heap-overflow

BID - 1739

TURBO - TLSA2000023-1

REDHAT - RHSA-2000:078

MANDRAKE - MDKSA-2000:053

DEBIAN - 20001013 traceroute: local root exploit

CALDERA - CSSA-2000-034.0

BUGTRAQ - 20000930 Conectiva Linux Security Announcement - traceroute

BUGTRAQ - 20000928 Very interesting traceroute flaw


Last Updated: 27 May 2016 10:35:56