CVE-2000-0172

Published: 2000-03-03

Description

The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

matt_kimball_and_roger_wolff - mtr

Affected Versions:

0.28

matt_kimball_and_roger_wolff - mtr

Affected Versions:

0.41

turbolinux - turbolinux

Affected Versions:

3.5b2

turbolinux - turbolinux

Affected Versions:

4.2

turbolinux - turbolinux

Affected Versions:

4.4

turbolinux - turbolinux

Affected Versions:

6.0.2

References

Neural Processor Active