Vulnerability Details CVE-2000-0751
mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.177
EPSS Ranking 94.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
- http://archives.neohapsis.com/archives/freebsd/2000-08/0336.html
- http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7&r2=1.8&f=h
- http://www.openbsd.org/errata.html#mopd
- http://www.redhat.com/support/errata/RHSA-2000-050.html
- http://www.securityfocus.com/bid/1559
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
- http://archives.neohapsis.com/archives/freebsd/2000-08/0336.html
- http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7&r2=1.8&f=h
- http://www.openbsd.org/errata.html#mopd
- http://www.redhat.com/support/errata/RHSA-2000-050.html
- http://www.securityfocus.com/bid/1559
Products affected by CVE-2000-0751
-
cpe:2.3:o:netbsd:netbsd:1.4.1
-
cpe:2.3:o:netbsd:netbsd:1.4.2
-
cpe:2.3:o:openbsd:openbsd:2.4
-
cpe:2.3:o:openbsd:openbsd:2.5
-
cpe:2.3:o:openbsd:openbsd:2.6
-
cpe:2.3:o:openbsd:openbsd:2.7
-
cpe:2.3:o:redhat:linux:6.0
-
cpe:2.3:o:redhat:linux:6.1
-
cpe:2.3:o:redhat:linux:6.2