CVE-2000-1043

Name of the Vulnerable Software and Affected Versions Mandrake Linux versions 7.1 and earlier

Description A format string issue in ypserv allows an attacker to gain root privileges when ypserv is built without a vsyslog() function. This could potentially lead to elevated access and control over the system.

Recommendations For Mandrake Linux versions 7.1 and earlier, consider rebuilding ypserv with a vsyslog() function to prevent exploitation of this issue. As a temporary workaround, restrict access to ypserv to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.