CVE-2000-1125
First published: Tue Jan 09 2001(Updated: )
restore 0.4b15 and earlier in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Linux | =6.2 | |
| Red Hat Linux | =6.2e |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2000-1125?
CVE-2000-1125 is considered a high severity vulnerability due to its ability to allow local users to gain root privileges.
How do I fix CVE-2000-1125?
To mitigate CVE-2000-1125, you should upgrade to a version of Red Hat Linux that does not utilize the vulnerable RSH environmental variable or apply the relevant security patches.
Who is affected by CVE-2000-1125?
CVE-2000-1125 affects Red Hat Linux version 6.2 and 6.2e.
What kind of attack can exploit CVE-2000-1125?
CVE-2000-1125 can be exploited by a local user through manipulation of the RSH variable, potentially leading to execution of malicious code.
Is CVE-2000-1125 still a concern today?
Although CVE-2000-1125 was disclosed over two decades ago, it remains a concern for systems still running the affected versions of Red Hat Linux.
- agent/references
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/nvd-historical
- vendor/redhat
- product/linux
- canonical/redhat linux
- agent/software-canonical-lookup-request
- collector/nvd-index
- canonical/red hat linux
- version/red hat linux/6.2
- version/red hat linux/6.2e