CVE-2000-0666

Published: Jul 16, 2000Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges.

Affected (32)

Products: Conectiva: Linux · Debian: Debian Linux · Redhat: Linux · +2 more

Show all products

Conectiva: Linux · Debian: Debian Linux · Redhat: Linux · Suse: Suse Linux · Trustix: Secure Linux

1 product

1 product

1 product

1 product

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Conectiva Linux	Version 4.0
Conectiva Linux	Version 4.0es
Conectiva Linux	Version 4.1
Conectiva Linux	Version 4.2
Conectiva Linux	Version 5.0
Conectiva Linux	Version 5.1

Configuration B

26 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 2.2
Debian Debian Linux	Version 2.2
Debian Debian Linux	Version 2.2
Debian Debian Linux	Version 2.2
Debian Debian Linux	Version 2.3
Debian Debian Linux	Version 2.3
Debian Debian Linux	Version 2.3
Debian Debian Linux	Version 2.3
Redhat Linux	Version 6.0
Redhat Linux	Version 6.0
Redhat Linux	Version 6.0
Redhat Linux	Version 6.1
Redhat Linux	Version 6.1
Redhat Linux	Version 6.1
Redhat Linux	Version 6.2
Redhat Linux	Version 6.2
Redhat Linux	Version 6.2
Suse Suse Linux	Version 6.3
Suse Suse Linux	Version 6.3
Suse Suse Linux	Version 6.3 alpha
Suse Suse Linux	Version 6.4
Suse Suse Linux	Version 6.4
Suse Suse Linux	Version 6.4 alpha
Suse Suse Linux	Version 7.0
Trustix Secure Linux	Version 1.0
Trustix Secure Linux	Version 1.1

References (18)

http://archives.neohapsis.com/archives/bugtraq/2000-07/0206.html

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-07/0230.html

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2000-07/0236.html

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2000-07/0260.html

Source: cve@mitre.org

http://www.calderasystems.com/support/security/advisories/CSSA-2000-025.0.txt

Source: cve@mitre.org

http://www.cert.org/advisories/CA-2000-17.html

Source: cve@mitre.org

US Government Resource

http://www.redhat.com/support/errata/RHSA-2000-043.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/1480

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/4939

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2000-07/0206.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-07/0230.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://archives.neohapsis.com/archives/bugtraq/2000-07/0236.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://archives.neohapsis.com/archives/bugtraq/2000-07/0260.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.calderasystems.com/support/security/advisories/CSSA-2000-025.0.txt

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cert.org/advisories/CA-2000-17.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.redhat.com/support/errata/RHSA-2000-043.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/1480

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/4939

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.