CVE-2000-0336
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
21/04/2000
Last modified:
03/04/2025
Description
Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.
Impact
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:openldap:openldap:1.2.7:*:*:*:*:*:*:* | ||
cpe:2.3:a:openldap:openldap:1.2.8:*:*:*:*:*:*:* | ||
cpe:2.3:a:openldap:openldap:1.2.9:*:*:*:*:*:*:* | ||
cpe:2.3:a:openldap:openldap:1.2.10:*:*:*:*:*:*:* | ||
cpe:2.3:o:mandrakesoft:mandrake_linux:6.1:*:*:*:*:*:*:* | ||
cpe:2.3:o:mandrakesoft:mandrake_linux:7.0:*:*:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux:6.1:*:alpha:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux:6.1:*:i386:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux:6.1:*:sparc:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux:6.2:*:alpha:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux:6.2:*:i386:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux:6.2:*:sparc:*:*:*:*:* | ||
cpe:2.3:o:turbolinux:turbolinux:4.2:*:*:*:*:*:*:* | ||
cpe:2.3:o:turbolinux:turbolinux:4.4:*:*:*:*:*:*:* | ||
cpe:2.3:o:turbolinux:turbolinux:6.0.2:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-009.0.txt
- http://www.redhat.com/support/errata/RHSA-2000-012.html
- http://www.securityfocus.com/bid/1232
- http://www.turbolinux.com/pipermail/tl-security-announce/2000-May/000009.html
- ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-009.0.txt
- http://www.redhat.com/support/errata/RHSA-2000-012.html
- http://www.securityfocus.com/bid/1232
- http://www.turbolinux.com/pipermail/tl-security-announce/2000-May/000009.html