Vulnerability Details CVE-2000-0118
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.4%
CVSS Severity
CVSS v2 Score 7.2
References
Products affected by CVE-2000-0118
-
cpe:2.3:o:redhat:linux:2.0
-
cpe:2.3:o:redhat:linux:2.1
-
cpe:2.3:o:redhat:linux:3.0.3
-
cpe:2.3:o:redhat:linux:4.0
-
cpe:2.3:o:redhat:linux:4.1
-
cpe:2.3:o:redhat:linux:4.2
-
cpe:2.3:o:redhat:linux:5.0
-
cpe:2.3:o:redhat:linux:5.1
-
cpe:2.3:o:redhat:linux:5.2
-
cpe:2.3:o:redhat:linux:6.0
-
cpe:2.3:o:redhat:linux:6.1
-
cpe:2.3:o:sun:solaris:1.1.3
-
cpe:2.3:o:sun:solaris:1.1.4
-
cpe:2.3:o:sun:solaris:2.4
-
cpe:2.3:o:sun:solaris:2.6
-
cpe:2.3:o:sun:sunos:-
-
cpe:2.3:o:sun:sunos:4.1.3
-
cpe:2.3:o:sun:sunos:4.1.4
-
cpe:2.3:o:sun:sunos:5.0
-
cpe:2.3:o:sun:sunos:5.1
-
cpe:2.3:o:sun:sunos:5.2
-
cpe:2.3:o:sun:sunos:5.3
-
cpe:2.3:o:sun:sunos:5.4
-
cpe:2.3:o:sun:sunos:5.5