Vulnerability Description
ikeyman in IBM IBMHSSSB 1.0 sets the CLASSPATH environmental variable to include the user's own CLASSPATH directories before the system's directories, which allows a malicious local user to execute arbitrary code as root via a Trojan horse Ikeyman class.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Http Server Ssl Module Common | 1.0 |
References
- http://www.securityfocus.com/archive/1/54073ExploitVendor Advisory
- http://www.securityfocus.com/bid/1092ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4235
- http://www.securityfocus.com/archive/1/54073ExploitVendor Advisory
- http://www.securityfocus.com/bid/1092ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4235
FAQ
What is CVE-2000-1202?
CVE-2000-1202 is a vulnerability with a CVSS score of 7.2 (HIGH). ikeyman in IBM IBMHSSSB 1.0 sets the CLASSPATH environmental variable to include the user's own CLASSPATH directories before the system's directories, which allows a malicious local user to execute ar...
How severe is CVE-2000-1202?
CVE-2000-1202 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-1202?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Http Server Ssl Module Common.