Vulnerability Description
ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping's exposure to bugs that otherwise would occur at lower privileges.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Immunix | Immunix | 6.2 |
| Iputils | Iputils | <= 2000-10-10 |
| Redhat | Linux | 6.2 |
References
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0429.html
- http://marc.info/?l=bugtraq&m=97249980727834&w=2
- http://www.redhat.com/support/errata/RHSA-2000-087.htmlVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0429.html
- http://marc.info/?l=bugtraq&m=97249980727834&w=2
- http://www.redhat.com/support/errata/RHSA-2000-087.htmlVendor Advisory
FAQ
What is CVE-2000-1213?
CVE-2000-1213 is a vulnerability with a CVSS score of 7.5 (HIGH). ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping's exposure to b...
How severe is CVE-2000-1213?
CVE-2000-1213 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-1213?
Check the references section above for vendor advisories and patch information. Affected products include: Immunix Immunix, Iputils Iputils, Redhat Linux.