Vulnerabilities > CVE-2000-1074 - Unspecified vulnerability in Netscape Iplanet Ical 2.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Netscape iCal 2.1 Patch2 iPlanet iCal 'csstart' Vulnerability. CVE-2000-1074. Local exploit for solaris platform |
| id | EDB-ID:20276 |
| last seen | 2016-02-02 |
| modified | 2000-10-10 |
| published | 2000-10-10 |
| reporter | @stake |
| source | https://www.exploit-db.com/download/20276/ |
| title | Netscape iCal 2.1 Patch2 iPlanet iCal 'csstart' Vulnerability |