Vulnerability Description
LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services.
CVSS Score
2.1
LOW
AV:L/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Plus Technologies | Lpplus | 3.2.2 |
References
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.htmlVendor Advisory
- http://www.securityfocus.com/bid/1643ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5199
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.htmlVendor Advisory
- http://www.securityfocus.com/bid/1643ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5199
FAQ
What is CVE-2000-0879?
CVE-2000-0879 is a vulnerability with a CVSS score of 2.1 (LOW). LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD serv...
How severe is CVE-2000-0879?
CVE-2000-0879 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0879?
Check the references section above for vendor advisories and patch information. Affected products include: Plus Technologies Lpplus.