Vulnerabilities > CVE-2000-0994 - Unspecified vulnerability in Openbsd

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
openbsd
exploit available
NVD
Published: 2000-12-19
Updated: 2018-05-03

Summary

Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable.

Vulnerable Configurations

Part Description Count
OS
Openbsd
5

Exploit-Db

descriptionOpenBSD 2.x fstat Format String Vulnerability. CVE-2000-0994. Local exploit for openbsd platform
idEDB-ID:20256
last seen2016-02-02
modified2000-10-04
published2000-10-04
reporterK2
sourcehttps://www.exploit-db.com/download/20256/
titleOpenBSD 2.x fstat Format String Vulnerability

References