Published: 11/12/2000 Updated: 19/12/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 730

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat linux 6.2
trustix secure linux 1.1

#!/bin/sh # Redhat 62 dump command executes external program # with suid priviledge # Discovered by Mat <mat@hackswarecom> # Written for and by a scriptkid Tasc ;P # Remember, there's no cure for BSE echo "dump-04b15 root exploit" echo "Discovered by Mat <mat@hackswarecom>" echo "-------------------------------------" echo DUMP= ...

/* ** ** dump-04b15xc ** ** dump-04b15 exploit: ** Redhat 62 dump command executes ** external program with suid priviledge ** ** affected: ** /sbin/dump ** /sbin/dumpstatic ** /sbin/restore ** /sbin/restorestatic ** ** Bug found by mat@hackswarecom ** ** This example was coded by md0claes@mdstudchalmersse ** It wa ...

NVD-CWE-Other http://www.securityfocus.com/bid/1871 http://archives.neohapsis.com/archives/bugtraq/2000-10/0438.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5437 https://nvd.nist.gov https://www.exploit-db.com/exploits/193/https://www.kb.cert.org/vuls/id/153653

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2000-1009

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect