CVE-2000-0336

Published Apr 21, 2000

Last updated 16 years ago

Overview

Description: Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:openldap:openldap:1.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC07AD0D-5DF9-41A4-8592-CEFF1842355D"
          },
          {
            "criteria": "cpe:2.3:a:openldap:openldap:1.2.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30017C56-42A9-4AF9-B5B3-7357E424F837"
          },
          {
            "criteria": "cpe:2.3:a:openldap:openldap:1.2.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8A51F38-3F5A-4F6D-93EE-776B5C2FF48F"
          },
          {
            "criteria": "cpe:2.3:a:openldap:openldap:1.2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DBEC27E-3220-42CE-B6CC-675F387CB506"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACAAD334-2CA7-4B3B-BA25-302E7610BC2A"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4853E92-5E0A-47B9-A343-D5BEE87D2C27"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:6.1:*:alpha:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C89454B9-4F45-4A42-A06D-ED42D893C544"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:6.1:*:i386:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B72D6205-DFA4-41D9-B3B6-0B7DA756CD8F"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:6.1:*:sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E64093E-7D53-4238-95C3-48ED5A0FFD97"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:6.2:*:alpha:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "344610A8-DB6D-4407-9304-916C419F648C"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:6.2:*:i386:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7EC2B95-4715-4EC9-A10A-2542501F8A61"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:6.2:*:sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64775BEF-2E53-43CA-8639-A7E54F6F4222"
          },
          {
            "criteria": "cpe:2.3:o:turbolinux:turbolinux:4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D15A193-3E01-467C-AEAD-497F4600DB06"
          },
          {
            "criteria": "cpe:2.3:o:turbolinux:turbolinux:4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7C765FF-0A3D-4BF4-B236-609658776ACA"
          },
          {
            "criteria": "cpe:2.3:o:turbolinux:turbolinux:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6619B49-8A89-4600-A47F-A39C8BF54259"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References