CVE-2000-0701

6 documents6 sources
Severity
4.6MEDIUM
EPSS
0.1%
top 76.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Conectiva LinuxGNU Mailman
Timeline
PublishedOct 20
Latest updateFeb 7

Description

The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

NVDgnu/mailman2.0
NVDconectiva/linux4 versions+3

Patches

Patch: archives.neohapsis.comPatch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-8cqc-8pp8-h3j3: The wrapper program in mailman 22022-04-30
CVEList
CVE-2000-0701: The wrapper program in mailman 22000-09-21

📋Vendor Advisories

2
Chrome
Stable Channel Update for Desktop: CVE-2023-06992023-02-07
Red Hat
security flaw2000-08-01

💬Community

1
Bugzilla
CVE-2000-0701 security flaw2018-08-16
CVE-2000-0701 (MEDIUM CVSS 4.6) | The wrapper program in mailman 2.0b | cvebase.io