Vulnerability Details CVE-2000-1011
Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.3%
CVSS Severity
CVSS v2 Score 7.2
References
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc
- http://www.osvdb.org/6070
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5638
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc
- http://www.osvdb.org/6070
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5638
Products affected by CVE-2000-1011
-
cpe:2.3:o:freebsd:freebsd:3.0
-
cpe:2.3:o:freebsd:freebsd:3.1
-
cpe:2.3:o:freebsd:freebsd:3.2
-
cpe:2.3:o:freebsd:freebsd:3.3
-
cpe:2.3:o:freebsd:freebsd:3.4
-
cpe:2.3:o:freebsd:freebsd:3.5
-
cpe:2.3:o:freebsd:freebsd:3.5.1
-
cpe:2.3:o:freebsd:freebsd:4.0
-
cpe:2.3:o:freebsd:freebsd:4.1
-
cpe:2.3:o:freebsd:freebsd:4.1.1
-
cpe:2.3:o:freebsd:freebsd:4.2
-
cpe:2.3:o:freebsd:freebsd:5.0