CVE-2001-1374

Name of the Vulnerable Software and Affected Versions expect versions prior to 5.32 tclx-8.3 tcltk-8.3.3 tcllib-1.0 tcl-8.3.3

Description The issue allows local users to gain root privileges via a Trojan horse library that is accessed by mkpasswd. Multiple vulnerabilities in the tclx, tcltk, tcllib, and tcl packages of the Red Hat Linux operating system can lead to a breach of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited locally.

Recommendations For expect versions prior to 5.32, update to version 5.32 or later to resolve the issue. For tclx-8.3, tcltk-8.3.3, tcllib-1.0, and tcl-8.3.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.