CVE-2000-1103

High

7.2/10

Summary

rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Jan 09, 2001

CVE-2000-1103

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS