Vulnerability Name: | CVE-2000-0816 (CCN-5320) | ||||||||
Assigned: | 2000-10-03 | ||||||||
Published: | 2000-10-03 | ||||||||
Updated: | 2017-10-10 | ||||||||
Summary: | Linux tmpwatch --fuser option allows local users to execute arbitrary commands by creating files whose names contain shell metacharacters. | ||||||||
CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||
CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
| ||||||||
Vulnerability Type: | CWE-Other | ||||||||
Vulnerability Consequences: | Gain Privileges | ||||||||
References: | Source: MITRE Type: CNA CVE-2000-0816 Source: CCN Type: RHSA-2000-080 tmpwatch has a local denial of service and root exploit Source: CCN Type: CIAC Information Bulletin L-005 Linux 'tmpwatch' Vulnerability Source: CCN Type: Internet Security Systems Security Alert #64 Insecure call of external programs in Red Hat Linux tmpwatch Source: MANDRAKE Type: UNKNOWN MDKSA-2000:056 Source: CCN Type: OSVDB ID: 1603 Linux tmpwatch fuser Option Arbitrary Command Execution Source: REDHAT Type: UNKNOWN RHSA-2000:080 Source: BID Type: UNKNOWN 1785 Source: CCN Type: BID-1785 Tmpwatch Arbitrary Command Execution Vulnerability Source: ISS Type: Vendor Advisory 20001006 Insecure call of external programs in Red Hat Linux tmpwatch Source: XF Type: UNKNOWN linux-tmpwatch-fuser(5320) Source: XF Type: UNKNOWN linux-tmpwatch-fuser(5320) | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||
BACK |