7.2
CVE-2000-0763
- EPSS 1.24%
- Veröffentlicht 20.10.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:25
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginxlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
David Bagley ≫ Xlock Version4.16
David Bagley ≫ Xlock Version4.16.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.24% | 0.653 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://archives.neohapsis.com/archives/bugtraq/2000-08/0212.html
http://archives.neohapsis.com/archives/bugtraq/2000-08/0294.html
http://archives.neohapsis.com/archives/freebsd/2000-08/0340.html
http://www.debian.org/security/2000/20000816
http://www.securityfocus.com/bid/1585
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000815231724.A14694%40subterrain.net