CVE-2000-1009

Name of the Vulnerable Software and Affected Versions Red Hat Linux version 6.2

Description The issue allows local users to obtain root privileges by modifying the RSH environmental variable to point to a Trojan horse program, as the dump utility in the affected system trusts the pathname specified by this variable.

Recommendations For Red Hat Linux version 6.2, update the system to prevent the dump utility from trusting the RSH environmental variable, or restrict access to the dump utility to prevent exploitation.