Vulnerability Details CVE-2000-0052
Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.6%
CVSS Severity
CVSS v2 Score 7.2
References
- http://www.l0pht.com/advisories/pam_advisory
- http://www.redhat.com/support/errata/RHSA-2000-001.html
- http://www.securityfocus.com/bid/913
- http://xforce.iss.net/search.php3?type=2&pattern=linux-pam-userhelper
- http://www.l0pht.com/advisories/pam_advisory
- http://www.redhat.com/support/errata/RHSA-2000-001.html
- http://www.securityfocus.com/bid/913
- http://xforce.iss.net/search.php3?type=2&pattern=linux-pam-userhelper
Products affected by CVE-2000-0052
-
cpe:2.3:o:mandrakesoft:mandrake_linux:6.0
-
cpe:2.3:o:mandrakesoft:mandrake_linux:6.1
-
cpe:2.3:o:redhat:linux:6.0
-
cpe:2.3:o:redhat:linux:6.1
-
cpe:2.3:o:turbolinux:turbolinux:3.5b2
-
cpe:2.3:o:turbolinux:turbolinux:4.2
-
cpe:2.3:o:turbolinux:turbolinux:4.4
-
cpe:2.3:o:turbolinux:turbolinux:6.0.2