CVE Vulnerabilities

CVE-2000-0994

Published: Dec 19, 2000 | Modified: May 03, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable.

Affected Software

Name Vendor Start Version End Version
Openbsd Openbsd 2.3 2.3
Openbsd Openbsd 2.4 2.4
Openbsd Openbsd 2.5 2.5
Openbsd Openbsd 2.6 2.6
Openbsd Openbsd 2.7 2.7

References