Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1142

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2000-1142
Last Modified 05 Sep 2008 04:22:45
Published 09 Jan 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-1142

Summary

Recourse ManTrap 1.6 generates an error when an attacker cd's to /proc/self/cwd and executes the pwd command, which allows attackers to determine that they are in a honeypot system.

Vulnerable Systems

Application

  • Recourse Technologies Mantrap 1.6.1


References

BUGTRAQ - 20001105 Mantrap Advisory Vendor Followup - Fate Research Labs

BUGTRAQ - 20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs

XF - mantrap-pwd-reveal-information

BUGTRAQ - 20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)


Last Updated: 27 May 2016 10:36:02