CVE-2000-0433Linux vulnerability

4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.1%
top 77.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Suse Linux
Timeline
PublishedMay 2
Latest updateApr 30

Description

The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accounts by creating standard user startup scripts such as profiles.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDsuse/suse_linux4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-mpxg-5frr-vc3r: The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accoun2022-04-30
CVEList
CVE-2000-0433: The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accoun2000-06-15

💥Exploits & PoCs

1
Exploit-DB
X11R6 3.3.3 - Symlink1999-03-21
CVE-2000-0433 — Suse Linux vulnerability | cvebase