CVE-2000-0229 — Vulnetix

Try Vulnetix Request Demo

CVE-2000-0229 PUBLISHED CVSS 7.199999809265137 HIGH

gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.

EPSS 0.11% · 29.8th percentile

Risk Scores

CVSS v2.0

7.199999809265137

EPSS Score

0.11%

29.8th percentile

Affected Products

Vendor	Product	Versions
debian	debian_linux	2.0, 2.1, 2.2
redhat	linux	6.2, 6.1, 6.0
n/a	n/a	n/a
suse	suse_linux	6.0, 6.2, 6.3
alessandro_rubini	gpm	1.18.1, 1.19

Timeline

Mar 22, 2000 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

RHSA-2000:045 vendor-advisory
20000322 gpm-root mailing-list
1069 vdb
RHSA-2000:009 vendor-advisory
20000405 Security hole in gpm < 1.18.1 vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2000-0229 advisory

Open in Interactive Console →