CVE Vulnerabilities

CVE-2000-1009

Published: Dec 11, 2000 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.

Affected Software

Name Vendor Start Version End Version
Linux Redhat 6.2 (including) 6.2 (including)
Secure_linux Trustix 1.1 (including) 1.1 (including)

References