7.2
CVSSv2

CVE-2000-0520

Published: 07/06/2000 Updated: 18/10/2016
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Buffer overflow in restore program 0.4b17 and previous versions in dump package allows local users to execute arbitrary commands via a long tape name.

Vulnerable Product Search on Vulmon Subscribe to Product

stelian pop dump 0.4b17.0

stelian pop dump 0.4b9.0

stelian pop dump 0.4b15.1

stelian pop dump 0.4b15.30

stelian pop dump 0.4b16.0

stelian pop dump 0.4b9.9

Exploits

source: wwwsecurityfocuscom/bid/1330/info A buffer overflow exists in the 'restore' program, part of the dump 04b15-1 package, distributed with RedHat Linux 62 By supplying a long string containing machine executable code at the prompt for a tape name, it is possible for an attacker to execute arbitrary code with root privileges The ...