Vulnerabilities > CVE-2001-0424

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

timecop

freebsd

NVD

Published: 2001-07-02

Updated: 2016-10-18

Summary

BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id.

Vulnerable Configurations

Part	Description	Count
Application	Timecop Timecop Bubblemon 1.0 Timecop Bubblemon 1.0Pl1 Timecop Bubblemon 1.0Pl2 Timecop Bubblemon 1.0Pl3 Timecop Bubblemon 1.0Pl4 Timecop Bubblemon 1.0Pl6 Timecop Bubblemon 1.0Pl7 Timecop Bubblemon 1.0Pl8 Timecop Bubblemon 1.0Pl9 Timecop Bubblemon 1.1 Timecop Bubblemon 1.1Test1 Timecop Bubblemon 1.1Test2 Timecop Bubblemon 1.1Test3 Timecop Bubblemon 1.1Test4 Timecop Bubblemon 1.1Test5 Timecop Bubblemon 1.1Test6 Timecop Bubblemon 1.1Test7 Timecop Bubblemon 1.2 Timecop Bubblemon 1.2Test1 Timecop Bubblemon 1.3 Timecop Bubblemon 1.21 Timecop Bubblemon 1.21Test1 Timecop Bubblemon 1.22 Timecop Bubblemon 1.23 Timecop Bubblemon 1.31	25
OS	Freebsd Freebsd Freebsd 6.2	1

Vulnerabilities > CVE-2001-0424 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2001-0424"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2001-0424