Vulnerabilities > CVE-2000-0172
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 | |
OS | 4 |
Exploit-Db
description | Matt Kimball and Roger Wolff mtr 0.28/0.41,Turbolinux 3.5 b2/4.2/4.4/6.0 mtr Vulnerability.2. CVE-2000-0172. Local exploits for multiple platform |
id | EDB-ID:19796 |
last seen | 2016-02-02 |
modified | 2000-03-03 |
published | 2000-03-03 |
reporter | Babcia Padlina |
source | https://www.exploit-db.com/download/19796/ |
title | Matt Kimball and Roger Wolff mtr 0.28/0.41 / Turbolinux 3.5 b2/4.2/4.4/6.0 mtr Vulnerability 2 |