Vulnerability Description
The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.
CVSS Score
6.2
MEDIUM
AV:L/AC:H/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | 3.4 |
| Netbsd | Netbsd | 1.4.1 |
| Openbsd | Openbsd | 2.6 |
References
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:01.make.asc
- http://www.securityfocus.com/bid/939
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:01.make.asc
- http://www.securityfocus.com/bid/939
FAQ
What is CVE-2000-0092?
CVE-2000-0092 is a vulnerability with a CVSS score of 6.2 (MEDIUM). The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.
How severe is CVE-2000-0092?
CVE-2000-0092 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0092?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Netbsd Netbsd, Openbsd Openbsd.