CVE-2000-0803
published 2000-12-19CVE-2000-0803: GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a…
critical10CVSS 3.1
AVNACLAuNCCICAC
GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gnu | groff | < 1.17 | 1.17 |
| chrome_chrome | — | — | |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |