CVE-2000-0880

Опубликовано: 14 нояб. 2000

Источник: nvd

CVSS2: 3.6

EPSS Низкий

Описание

LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html
Vendor Advisory
http://www.securityfocus.com/bid/1643
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5200
http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html
Vendor Advisory
http://www.securityfocus.com/bid/1643
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5200

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:plus_technologies:lpplus:3.2.2:*:*:*:*:*:*:*

cpe:2.3:a:plus_technologies:lpplus:3.3:*:*:*:*:*:*:*

EPSS

Процентиль: 33%

0.00133

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-3932-xh88-q34x

github

почти 4 года назад