Vulnerabilities > CVE-2000-0494 - Unspecified vulnerability in Symantec Veritas Volume Manager 3.0.2/3.0.3/3.0.4
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Veritas Volume Manager creates a world writable .server_pids file, which allows local users to add arbitrary commands into the file, which is then executed by the vmsa_server script.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | Veritas Software Volume Manager 3.0.2/3.0.3/3.0.4 File Permission Vulnerability. CVE-2000-0494. Local exploit for solaris platform |
| id | EDB-ID:20018 |
| last seen | 2016-02-02 |
| modified | 2000-06-16 |
| published | 2000-06-16 |
| reporter | Dixie Flatline |
| source | https://www.exploit-db.com/download/20018/ |
| title | Veritas Software Volume Manager 3.0.2/3.0.3/3.0.4 File Permission Vulnerability |