Vulnerabilities > CVE-2000-1072 - Unspecified vulnerability in Netscape Iplanet Ical 2.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Netscape iCal 2.1 Patch2 iPlanet iCal 'iplncal.sh' Permissions Vulnerability. CVE-2000-1072. Local exploit for solaris platform |
| id | EDB-ID:20275 |
| last seen | 2016-02-02 |
| modified | 2000-10-10 |
| published | 2000-10-10 |
| reporter | @stake |
| source | https://www.exploit-db.com/download/20275/ |
| title | Netscape iCal 2.1 Patch2 iPlanet iCal 'iplncal.sh' Permissions Vulnerability |