Vulnerabilities > CVE-2000-1207 - Unspecified vulnerability in Redhat Linux

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

redhat

NVD

Published: 2000-09-30

Updated: 2016-10-18

Summary

userhelper in the usermode package on Red Hat Linux executes non-setuid programs as root, which does not activate the security measures in glibc and allows the programs to be exploited via format string vulnerabilities in glibc via the LANG or LC_ALL environment variables (CVE-2000-0844).

Vulnerable Configurations

Part	Description	Count
OS	Redhat Redhat Linux *	1

Redhat

advisories

rhsa

id	RHSA-2000:075

References

http://marc.info/?l=bugtraq&m=97034397026473&w=2
http://marc.info/?l=bugtraq&m=97063854808796&w=2
http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-059.php3
http://www.redhat.com/support/errata/RHSA-2000-075.html