exploitDog

CVE-2000-0803

Опубликовано: 19 дек. 2000

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/5280
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/5280
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gnu:groff:*:*:*:*:*:*:*:*

Версия до 1.17 (исключая)

EPSS

Процентиль: 74%

0.00837

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2000-0803

msrc

почти 5 лет назад

Описание отсутствует

GHSA-wph5-jqqm-rqpf

github

больше 3 лет назад

GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff.

EPSS

Процентиль: 74%

0.00837

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other