Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0052 — Mandrake Linux vulnerability

7 documents6 sources

Severity

7.2HIGHNVD

EPSS

0.3%

top 46.60%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Timeline

PublishedJan 4

Latest updateApr 30

Description

Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

▶NVDredhat/linux6.0, 6.1+1

GHSA

GHSA-cxvc-f794-62r9: Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a↗2022-04-30

▶

CVEList

CVE-2000-0052: Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a↗2000-04-18

▶

Exploit-DB

Mandrake 6.x / RedHat 6.x / Turbolinux 3.5 b2/4.x/6.0.2 userhelper/PAM - Path (2)↗2000-03-15

▶

Exploit-DB

Mandrake 6.x / RedHat 6.x / Turbolinux 3.5 b2/4.x/6.0.2 userhelper/PAM - Path (1)↗2000-01-04

▶

Red Hat

security flaw↗2000-01-04

▶

Bugzilla

CVE-2000-0052 security flaw↗2018-08-16

▶