← Back

CVE-2000-0118

nvd nist
Published: Jun 9, 1999Modified: Apr 16, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.

Affected (30)

Products: Redhat: Linux · Sun: Solaris, Sunos
Redhat
1 product
Linux
Sun
2 products
Solaris
Sunos
Configuration A
30 vulnerable
Vulnerable SoftwareAffected Versions
Redhat
Linux
Version 2.0
Linux
Version 2.1
Linux
Version 3.0.3
Linux
Version 4.0
Linux
Version 4.1
Linux
Version 4.2
Linux
Version 5.0
Linux
Version 5.1
Linux
Version 5.2
Linux
Version 5.2
Linux
Version 5.2
Linux
Version 6.0
Linux
Version 6.0
Linux
Version 6.0
Linux
Version 6.1
Linux
Version 6.1
Linux
Version 6.1
Sun
Solaris
All versions
Solaris
Version 1.1.3 u1
Solaris
Version 1.1.4
Solaris
Version 2.4
Sun
Sunos
All versions
Sunos
Version 4.1.3
Sunos
Version 4.1.4
Sunos
Version 5.0
Sunos
Version 5.1
Sunos
Version 5.2
Sunos
Version 5.3
Sunos
Version 5.4
Sunos
Version 5.5

References (2)

Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.