← Back

CVE-2000-0867

nvd nist
Published: Nov 14, 2000Modified: Apr 16, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.

Affected (10)

Show all products
Debian: Debian Linux · Mandrakesoft: Mandrake Linux · Redhat: Linux · Slackware: Slackware Linux · Trustix: Secure Linux
Debian
1 product
Debian Linux
Mandrakesoft
1 product
Mandrake Linux
Redhat
1 product
Linux
Slackware
1 product
Slackware Linux
Trustix
1 product
Secure Linux
Configuration A
10 vulnerable
Vulnerable SoftwareAffected Versions
Debian
Debian Linux
Version 2.1
Debian Linux
Version 2.2
Mandrakesoft
Mandrake Linux
Version 6.0
Mandrake Linux
Version 6.1
Mandrake Linux
Version 7.0
Mandrake Linux
Version 7.1
Redhat
Linux
Version 5.2
Linux
Version 6.2
Slackware Linux
All versions
Secure Linux
Version 1.1

References (18)

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-032.0.txt (unsafe URL)
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-032.0.txt (unsafe URL)
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.