Vulnerability Details CVE-2000-1009
dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.4%
CVSS Severity
CVSS v2 Score 7.2
References
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0438.html
- http://www.securityfocus.com/bid/1871
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5437
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0438.html
- http://www.securityfocus.com/bid/1871
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5437
Products affected by CVE-2000-1009
-
cpe:2.3:o:redhat:linux:6.2
-
cpe:2.3:o:trustix:secure_linux:1.1