Vulnerabilities > CVE-2000-0172

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

exploit available

NVD

Published: 2000-03-03

Updated: 2008-09-10

Summary

The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.

Part	Description	Count
Application	Matt_Kimball_And_Roger_Wolff Matt Kimball AND Roger Wolff MTR 0.28 Matt Kimball AND Roger Wolff MTR 0.41	2
OS	Turbolinux Turbolinux Turbolinux 3.5B2 Turbolinux Turbolinux 4.2 Turbolinux Turbolinux 4.4 Turbolinux Turbolinux 6.0.2	4

description	Matt Kimball and Roger Wolff mtr 0.28/0.41,Turbolinux 3.5 b2/4.2/4.4/6.0 mtr Vulnerability.2. CVE-2000-0172. Local exploits for multiple platform
id	EDB-ID:19796
last seen	2016-02-02
modified	2000-03-03
published	2000-03-03
reporter	Babcia Padlina
source	https://www.exploit-db.com/download/19796/
title	Matt Kimball and Roger Wolff mtr 0.28/0.41 / Turbolinux 3.5 b2/4.2/4.4/6.0 mtr Vulnerability 2