Vulnerabilities > CVE-2000-0506 - Unspecified vulnerability in Linux Kernel
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN linux
exploit available
Summary
The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."
Vulnerable Configurations
Exploit-Db
description kernel 2.2.x/2.4 .0-test1,SGI ProPack 1.2/1.3 Capabilities Vulnerability (1). CVE-2000-0506. Local exploit for linux platform id EDB-ID:20000 last seen 2016-02-02 modified 2000-06-07 published 2000-06-07 reporter Florian Heinz source https://www.exploit-db.com/download/20000/ title kernel 2.2.x/2.4 .0-test1,SGI ProPack 1.2/1.3 - Capabilities Vulnerability 1 description kernel 2.2.x/2.4 .0-test1,SGI ProPack 1.2/1.3 Capabilities Vulnerability (2). CVE-2000-0506. Local exploit for linux platform id EDB-ID:20001 last seen 2016-02-02 modified 2000-06-07 published 2000-06-07 reporter Wojciech Purczynski source https://www.exploit-db.com/download/20001/ title kernel 2.2.x/2.4 .0-test1,SGI ProPack 1.2/1.3 - Capabilities Vulnerability 2
Redhat
advisories |
|
References
- http://www.redhat.com/support/errata/RHSA-2000-037.html
- ftp://sgigate.sgi.com/security/20000802-01-P
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0062.html
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0063.html
- http://www.securityfocus.com/bid/1322
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006090852340.3475-300000%40alfa.elzabsoft.pl