7.2

CVE-2000-1134

Exploit
Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ImmunixImmunix Version6.2
ConectivaLinux Version4.0
ConectivaLinux Version4.0es
ConectivaLinux Version4.1
ConectivaLinux Version4.2
ConectivaLinux Version5.0
ConectivaLinux Version5.1
CalderaOpenlinux Edesktop Version2.4
CalderaOpenlinux Eserver Version2.3
HpHp-ux Version11.11
MandrakesoftMandrake Linux Version6.0
MandrakesoftMandrake Linux Version6.1
MandrakesoftMandrake Linux Version7.0
MandrakesoftMandrake Linux Version7.1
MandrakesoftMandrake Linux Version7.2
RedhatLinux Version5.2
RedhatLinux Version6.0
RedhatLinux Version6.1
RedhatLinux Version6.2
RedhatLinux Version6.2e
SuseSuse Linux Version7.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.18% 0.36
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
http://www.kb.cert.org/vuls/id/10277
US Government Resource
http://www.securityfocus.com/bid/2006
Patch
Vendor Advisory
Exploit