Описание
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
Отчет
This issue was fixed in the following products:
- Red Hat Linux 5.0 - RHSA-2000:057 (2000-09-01)
- Red Hat Linux 5.1 - RHSA-2000:057 (2000-09-01)
- Red Hat Linux 5.2 - RHSA-2000:057 (2000-09-01)
- Red Hat Linux 6.0 - RHSA-2000:057 (2000-09-01)
- Red Hat Linux 6.1 - RHSA-2000:057 (2000-09-01)
- Red Hat Linux 6.2 - RHSA-2000:057 (2000-09-01)
Ссылки на источники
Дополнительная информация
https://bugzilla.redhat.com/show_bug.cgi?id=1616517security flaw
EPSS
Процентиль: 74%
0.00891
Низкий
Связанные уязвимости
nvd
больше 24 лет назад
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
github
около 3 лет назад
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
EPSS
Процентиль: 74%
0.00891
Низкий