Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1213

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-1213
Last Modified 10 Sep 2008 03:06:53
Published 18 Oct 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-1213

Summary

ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping's exposure to bugs that otherwise would occur at lower privileges.

Vulnerable Systems

Operating System

  • Redhat Linux 6.2

  • Redhat Linux 7.0

Application

  • Immunix 6.2

  • Iputils 2000-10-10


References

REDHAT - RHSA-2000:087

BUGTRAQ - 20001025 Immunix OS Security Update for ping package

BUGTRAQ - 20001030 Trustix Security Advisory - ping gnupg ypbind


Last Updated: 27 May 2016 10:36:04