10
CVE-2000-0844
- EPSS 15.35%
- Veröffentlicht 14.11.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:35
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Caldera ≫ Openlinux Ebuilder Version3.0
Caldera ≫ Openlinux Eserver Version2.3
Debian ≫ Debian Linux Version2.0
Debian ≫ Debian Linux Version2.1
Debian ≫ Debian Linux Version2.2
Debian ≫ Debian Linux Version2.3
Mandrakesoft ≫ Mandrake Linux Version7.0
Mandrakesoft ≫ Mandrake Linux Version7.1
Slackware ≫ Slackware Linux Version7.0
Slackware ≫ Slackware Linux Version7.1
Suse ≫ Suse Linux Version6.1
Suse ≫ Suse Linux Version6.2
Suse ≫ Suse Linux Version6.3
Suse ≫ Suse Linux Version6.4
Suse ≫ Suse Linux Version7.0
Trustix ≫ Secure Linux Version1.0
Trustix ≫ Secure Linux Version1.1
Turbolinux ≫ Turbolinux Version6.0
Turbolinux ≫ Turbolinux Version6.0.1
Turbolinux ≫ Turbolinux Version6.0.2
Turbolinux ≫ Turbolinux Version6.0.3
Turbolinux ≫ Turbolinux Version6.0.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 15.35% | 0.964 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://archives.neohapsis.com/archives/bugtraq/2000-08/0436.html
http://www.debian.org/security/2000/20000902
http://www.novell.com/linux/security/advisories/adv5_draht_glibc_txt.html
http://www.redhat.com/support/errata/RHSA-2000-057.html
http://www.turbolinux.com/pipermail/tl-security-announce/2000-September/000020.html
ftp://patches.sgi.com/support/free/security/advisories/20000901-01-P
http://archives.neohapsis.com/archives/bugtraq/2000-08/0457.html
http://archives.neohapsis.com/archives/bugtraq/2000-10/0427.html
http://archives.neohapsis.com/archives/tru64/2000-q4/0000.html
http://www.calderasystems.com/support/security/advisories/CSSA-2000-030.0.txt
http://www.securityfocus.com/bid/1634
https://exchange.xforce.ibmcloud.com/vulnerabilities/5176