Moole Vulnerability Database

Find real vulnerabilities before they ship

Unknown

CVE-2000-1103

rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line.

PublishedJan 09, 2001, 05:00

Published Bycve@mitre.org

Affected Versions

No affected versions found.

References

http://www.securityfocus.com/archive/1/147120
http://www.securityfocus.com/bid/2009

Weakness Type

NVD-CWE-Other

CVSS Metrics

Base Score

7.2

Vector String

AV:L/AC:L/Au:N/C:C/I:C/A:C

Base SeverityUnknown

Version

2.0

Attack Vector (AV)