PT-2001-1164 · Red Hat · Restore+1

Publicado

2001-01-09

Atualizado

2016-10-18

CVE-2000-1125

CVSS v2.0

7.2

Alta

Vetor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Red Hat Linux version 6.2 with restore 0.4b15 and earlier

Description The issue allows local users to obtain root privileges by modifying the RSH environmental variable to point to a Trojan horse program, as the restore utility trusts the pathname specified by this variable.

Recommendations For Red Hat Linux 6.2 with restore 0.4b15 and earlier, consider restricting access to the RSH environmental variable to prevent unauthorized modifications until a patch is available.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2000-1125

Produtos afetados

Red Hat

Restore

PT-2001-1164 · Red Hat · Restore+1

CVE-2000-1125

Identificadores relacionados

Produtos afetados

Referências · 6