CVE Vulnerabilities

CVE-2000-1004

Published: Dec 11, 2000 | Modified: Apr 03, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters.

Affected Software

Name Vendor Start Version End Version
Openbsd Openbsd 2.3 (including) 2.3 (including)
Openbsd Openbsd 2.4 (including) 2.4 (including)
Openbsd Openbsd 2.5 (including) 2.5 (including)
Openbsd Openbsd 2.6 (including) 2.6 (including)
Openbsd Openbsd 2.7 (including) 2.7 (including)

References