CVE-2000-0691

Published: Oct 20, 2000Modified: Apr 16, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file.

Affected (3)

Products: Gert Doering: Mgetty

Gert Doering

1 product

Mgetty

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Gert Doering Mgetty	Version 1.1.19
Gert Doering Mgetty	Version 1.1.20
Gert Doering Mgetty	Version 1.1.21

References (8)

http://archives.neohapsis.com/archives/bugtraq/2000-08/0329.html

Source: cve@mitre.org

ExploitVendor Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-08/0330.html

Source: cve@mitre.org

http://www.calderasystems.com/support/security/advisories/CSSA-2000-029.0.txt

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/1612

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-08/0329.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-08/0330.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.calderasystems.com/support/security/advisories/CSSA-2000-029.0.txt

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/1612

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

Timeline

No history available yet.