Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0641

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0641
Last Modified 10 Sep 2008 03:08:33
Published 20 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0641

Summary

Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option.

Vulnerable Systems

Operating System

  • Redhat Linux 5.2

  • Redhat Linux 6.2

  • Redhat Linux 7.0

  • Suse Linux 6.0

  • Suse Linux 6.1

  • Suse Linux 6.2

  • Suse Linux 6.3

  • Suse Linux 6.4

  • Suse Linux 7.0

  • Suse Linux 7.1

Application

  • Immunix 6.2

  • Immunix 7.0

  • Immunix 7.0 Beta


References

XF - man-s-bo(6530)

BID - 2711

REDHAT - RHSA-2001:069

BUGTRAQ - 20010513 RH 7.0:/usr/bin/man exploit: gid man + more

BUGTRAQ - 20010612 man 1.5h10 + man 1.5i-4 exploits

SUSE - SuSE-SA:2001:019


Last Updated: 27 May 2016 10:36:20