Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1095

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2000-1095
Last Modified 05 Sep 2008 04:22:38
Published 09 Jan 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-1095

Summary

modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.

Vulnerable Systems

Operating System

  • Conectiva Linux 5.1

  • Mandrakesoft Mandrake Linux 7.2

  • Redhat Linux 7.0

  • Suse Linux 6.4

  • Suse Linux 7.0

Application

  • Immunix 6.2

  • Immunix 7.0 Beta


References

BID - 1936

REDHAT - RHSA-2000:108

XF - linux-modprobe-execute-code

MANDRAKE - MDKSA-2000:071

DEBIAN - 20001120 modutils: local exploit

CONECTIVA - CLSA-2000:340

SUSE - SuSE-SA:2000:44

BUGTRAQ - 20001112 RedHat 7.0 (and SuSE): modutils + netkit = root compromise. (fwd)


Last Updated: 27 May 2016 10:36:00