CVE-2000-1009

Published: Dec 11, 2000Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.

Affected (2)

Products: Redhat: Linux · Trustix: Secure Linux

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Linux	Version 6.2
Trustix Secure Linux	Version 1.1

References (6)

http://archives.neohapsis.com/archives/bugtraq/2000-10/0438.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/1871

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5437

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2000-10/0438.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/1871

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5437

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.