Vulnerabilities > CVE-2000-0956 - Unspecified vulnerability in Carnegie Mellon University Cyrus-Sasl 1.5.24

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
carnegie-mellon-university

Summary

cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions.

Vulnerable Configurations

Part Description Count
Application
Carnegie_Mellon_University
1

Redhat

advisories
rhsa
idRHSA-2000:094