CVE-2000-0048 — HIGH (7.2) — White Hats Nepal

Vulnerability Description

get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Corel	Linux	1.0

References

http://linux.corel.com/support/clos_patch1.htm
http://www.securityfocus.com/bid/928
http://linux.corel.com/support/clos_patch1.htm
http://www.securityfocus.com/bid/928

FAQ

What is CVE-2000-0048?

CVE-2000-0048 is a vulnerability with a CVSS score of 7.2 (HIGH). get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program.

How severe is CVE-2000-0048?

CVE-2000-0048 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2000-0048?

Check the references section above for vendor advisories and patch information. Affected products include: Corel Linux.