Vulnerabilities > CVE-2001-0787 - Unspecified vulnerability in Redhat Linux 7.0/7.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN redhat
exploit available
Summary
LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Exploit-Db
| description | LPRng 3.6.x Failure To Drop Supplementary Groups Vulnerability. CVE-2001-0787. Local exploit for unix platform |
| id | EDB-ID:20923 |
| last seen | 2016-02-02 |
| modified | 2001-06-07 |
| published | 2001-06-07 |
| reporter | zen-parse |
| source | https://www.exploit-db.com/download/20923/ |
| title | LPRng 3.6.x Failure To Drop Supplementary Groups Vulnerability |
Redhat
| advisories |
|
References
- http://www.ciac.org/ciac/bulletins/l-096.shtml
- http://www.ciac.org/ciac/bulletins/l-096.shtml
- http://www.redhat.com/support/errata/RHSA-2001-077.html
- http://www.redhat.com/support/errata/RHSA-2001-077.html
- http://www.securityfocus.com/bid/2865
- http://www.securityfocus.com/bid/2865
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6703
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6703