Vulnerabilities > CVE-2001-0787 - Unspecified vulnerability in Redhat Linux 7.0/7.1

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
redhat
exploit available
NVD
Published: 2001-10-18
Updated: 2017-10-10

Summary

LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges.

Vulnerable Configurations

Part Description Count
OS
Redhat
2

Exploit-Db

descriptionLPRng 3.6.x Failure To Drop Supplementary Groups Vulnerability. CVE-2001-0787. Local exploit for unix platform
idEDB-ID:20923
last seen2016-02-02
modified2001-06-07
published2001-06-07
reporterzen-parse
sourcehttps://www.exploit-db.com/download/20923/
titleLPRng 3.6.x Failure To Drop Supplementary Groups Vulnerability

Redhat

advisories
rhsa
idRHSA-2001:077

References