CVE-2001-0424

EPSS 0.06%
Published 02.07.2001 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Timecop ≫ Bubblemon Version1.0

Timecop ≫ Bubblemon Version1.0pl1

Timecop ≫ Bubblemon Version1.0pl2

Timecop ≫ Bubblemon Version1.0pl3

Timecop ≫ Bubblemon Version1.0pl4

Timecop ≫ Bubblemon Version1.0pl6

Timecop ≫ Bubblemon Version1.0pl7

Timecop ≫ Bubblemon Version1.0pl8

Timecop ≫ Bubblemon Version1.0pl9

Timecop ≫ Bubblemon Version1.1

Timecop ≫ Bubblemon Version1.1test1

Timecop ≫ Bubblemon Version1.1test2

Timecop ≫ Bubblemon Version1.1test3

Timecop ≫ Bubblemon Version1.1test4

Timecop ≫ Bubblemon Version1.1test5

Timecop ≫ Bubblemon Version1.1test6

Timecop ≫ Bubblemon Version1.1test7

Timecop ≫ Bubblemon Version1.2

Timecop ≫ Bubblemon Version1.2test1

Timecop ≫ Bubblemon Version1.3

Timecop ≫ Bubblemon Version1.21

Timecop ≫ Bubblemon Version1.21test1

Timecop ≫ Bubblemon Version1.22

Timecop ≫ Bubblemon Version1.23

Timecop ≫ Bubblemon Version1.31

Freebsd ≫ Freebsd Version6.2 Updatestable

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.06%	0.16

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://marc.info/?l=bugtraq&m=98744422105430&w=2

http://www.securityfocus.com/bid/2609

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2001-0424

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0424

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0424

EUVD