PT-2001-1164 · Red Hat · Restore+1

Published

2001-01-09

Updated

2016-10-18

CVE-2000-1125

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Red Hat Linux version 6.2 with restore 0.4b15 and earlier

Description The issue allows local users to obtain root privileges by modifying the RSH environmental variable to point to a Trojan horse program, as the restore utility trusts the pathname specified by this variable.

Recommendations For Red Hat Linux 6.2 with restore 0.4b15 and earlier, consider restricting access to the RSH environmental variable to prevent unauthorized modifications until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-1125

Affected Products

Red Hat

Restore

PT-2001-1164 · Red Hat · Restore+1

CVE-2000-1125

Related Identifiers

Affected Products

References · 6