PT-1999-1859 · Red Hat · Red Hat

Published

1999-06-09

Updated

2018-10-30

CVE-2000-0118

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Red Hat Linux (affected versions not specified)

Description: The issue concerns the Red Hat Linux su program, which fails to log failed password guesses if the su process is terminated before it times out. This allows local attackers to perform brute force password guessing without being detected.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0118

Affected Products

Red Hat

PT-1999-1859 · Red Hat · Red Hat

CVE-2000-0118

Related Identifiers

Affected Products

References · 3