Vulnerability Details CVE-2001-0033
KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the user to gain additional privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.5%
CVSS Severity
CVSS v2 Score 7.2
References
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0093.html
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0105.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5738
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0093.html
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0105.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5738
Products affected by CVE-2001-0033
-
cpe:2.3:a:kth:kth_kerberos:4
-
cpe:2.3:o:netbsd:netbsd:1.5