CVE-2000-0029 — MEDIUM (4.6)

Vulnerability Description

UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.

CVSS Score

4.6

MEDIUM

AV:L/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Sco	Unixware	7.1

References

http://marc.info/?l=bugtraq&m=94780294009285&w=2
http://www.securityfocus.com/bid/901
http://marc.info/?l=bugtraq&m=94780294009285&w=2
http://www.securityfocus.com/bid/901

FAQ

What is CVE-2000-0029?

CVE-2000-0029 is a vulnerability with a CVSS score of 4.6 (MEDIUM). UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.

How severe is CVE-2000-0029?

CVE-2000-0029 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2000-0029?

Check the references section above for vendor advisories and patch information. Affected products include: Sco Unixware.