First published: Tue Apr 18 2000(Updated: )
read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypted passwords.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GNU Emacs | =20.1 | |
GNU Emacs | =20.5 | |
GNU Emacs | =20.4 | |
GNU Emacs | =20.6 | |
GNU Emacs | =20.2 | |
GNU Emacs | =20.3 | |
GNU Emacs | =20.0 | |
=20.0 | ||
=20.1 | ||
=20.2 | ||
=20.3 | ||
=20.4 | ||
=20.5 | ||
=20.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2000-0271 is classified as a moderate severity vulnerability.
To mitigate CVE-2000-0271, users should upgrade to a version of GNU Emacs later than 20.6.
CVE-2000-0271 specifically affects GNU Emacs versions 20.0 to 20.6.
CVE-2000-0271 is a security vulnerability that allows an attacker to read unencrypted passwords.
Users of GNU Emacs versions 20.0 to 20.6 are at risk from CVE-2000-0271.