NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2000-0229

Summary	gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.
Publication Date	March 22, 2000, 2 p.m.
Registration Date	Jan. 29, 2021, 6:03 p.m.
Last Update	Sept. 11, 2008, 4:03 a.m.

CVSS2.0 : HIGH
Score	7.2
Vector	AV:L/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	はい
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:o:alessandro_rubini:gpm:1.18.1:::::::*
cpe:2.3:o:alessandro_rubini:gpm:1.19:::::::*
cpe:2.3:o:debian:debian_linux:2.0:::::::*
cpe:2.3:o:debian:debian_linux:2.1:::::::*
cpe:2.3:o:debian:debian_linux:2.2:::::::*
cpe:2.3:o:debian:debian_linux:2.2::pre_potato:::::
cpe:2.3:o:redhat:linux:6.0::i386:::::
cpe:2.3:o:redhat:linux:6.1::i386:::::
cpe:2.3:o:redhat:linux:6.2::i386:::::
cpe:2.3:o:suse:suse_linux:5.3:::::::*
cpe:2.3:o:suse:suse_linux:6.0:::::::*
cpe:2.3:o:suse:suse_linux:6.1:::::::*
cpe:2.3:o:suse:suse_linux:6.2:::::::*
cpe:2.3:o:suse:suse_linux:6.3:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://archives.neohapsis.com/archives/bugtraq/2000-03/0242.html	BUGTRAQ
2	http://www.novell.com/linux/security/advisories/suse_security_announce_45.html	SUSE
3	http://www.redhat.com/support/errata/RHSA-2000-009.html	REDHAT
4	http://www.redhat.com/support/errata/RHSA-2000-045.html	REDHAT
5	http://www.securityfocus.com/bid/1069	BID

Common Vulnerabilities List