Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0454Improper Restriction of Operations within the Bounds of a Memory Buffer in Mandrake Linux

4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.5%
top 35.27%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Mandrakesoft Mandrake Linux
Timeline
PublishedMay 29
Latest updateApr 30

Description

Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-cr5m-c8fx-9pvc: Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter2022-04-30
CVEList
CVE-2000-0454: Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter2000-07-12

💥Exploits & PoCs

1
Exploit-DB
Mandriva Linux Mandrake 7.0 - Local Buffer Overflow2000-05-29
CVE-2000-0454 — Mandrake Linux vulnerability | cvebase