Vulnerabilities > CVE-2000-0052

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

exploit available

NVD

Published: 2000-01-04

Updated: 2008-09-10

Summary

Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.

Part	Description	Count
OS	Mandrakesoft Mandrakesoft Mandrake Linux 6.0 Mandrakesoft Mandrake Linux 6.1	2
OS	Redhat Redhat Linux 6.0 Redhat Linux 6.1	2
OS	Turbolinux Turbolinux Turbolinux 3.5B2 Turbolinux Turbolinux 4.2 Turbolinux Turbolinux 4.4 Turbolinux Turbolinux 6.0.2	4

description	Mandrake 6.0/6.1,RedHat 6.0/6.1,Turbolinux 3.5 b2/4.2/4.4/6.0.2 userhelper/PAM Path Vulnerability (2). CVE-2000-0052. Local exploit for linux platform
id	EDB-ID:19710
last seen	2016-02-02
modified	2000-03-15
published	2000-03-15
reporter	Elias Levy
source	https://www.exploit-db.com/download/19710/
title	Mandrake 6.x / RedHat 6.x / Turbolinux 3.5 b2/4.x/6.0.2 userhelper/PAM - Path Vulnerability 2

description	Mandrake 6.0/6.1,RedHat 6.0/6.1,Turbolinux 3.5 b2/4.2/4.4/6.0.2 userhelper/PAM Path Vulnerability. CVE-2000-0052. Local exploit for linux platform
id	EDB-ID:19709
last seen	2016-02-02
modified	2000-01-04
published	2000-01-04
reporter	dildog
source	https://www.exploit-db.com/download/19709/
title	Mandrake 6.x / RedHat 6.x / Turbolinux 3.5 b2/4.x/6.0.2 userhelper/PAM - Path Vulnerability 1

advisories

rhsa

id	RHSA-2000:001