What is the severity of CVE-2001-0424?

CVE-2001-0424 has been classified as a high severity vulnerability due to the potential for local users to execute arbitrary commands.

How do I fix CVE-2001-0424?

To fix CVE-2001-0424, ensure that the application properly drops group privileges before executing any programs.

Which versions of BubbleMon are affected by CVE-2001-0424?

CVE-2001-0424 affects BubbleMon versions 1.0, 1.0pl1 through 1.0pl9, and all versions up to 1.31.

Can remote attackers exploit CVE-2001-0424?

No, CVE-2001-0424 is a local vulnerability, meaning only local users can exploit this flaw.

What type of vulnerability is CVE-2001-0424?

CVE-2001-0424 is a privilege escalation vulnerability that allows local users to gain elevated permissions.

Vulnerability/
CVE-2001-0424

high

7.2

CWE

NVD-CWE-Other

24/5/2001

8/8/2024

CVE-2001-0424

First published: Thu May 24 2001(Updated: )

BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Timecop Wmcube Gdk	=1.0pl7
Timecop Wmcube Gdk	=1.23
Timecop Wmcube Gdk	=1.0pl3
Timecop Wmcube Gdk	=1.22
Timecop Wmcube Gdk	=1.0pl6
Timecop Wmcube Gdk	=1.31
Timecop Wmcube Gdk	=1.1test3
Timecop Wmcube Gdk	=1.0pl4
Timecop Wmcube Gdk	=1.21test1
Timecop Wmcube Gdk	=1.0pl2
Timecop Wmcube Gdk	=1.3
Timecop Wmcube Gdk	=1.0
Timecop Wmcube Gdk	=1.1test5
Timecop Wmcube Gdk	=1.21
Timecop Wmcube Gdk	=1.2
Timecop Wmcube Gdk	=1.1test2
Timecop Wmcube Gdk	=1.1test7
Timecop Wmcube Gdk	=1.0pl1
Timecop Wmcube Gdk	=1.0pl9
Timecop Wmcube Gdk	=1.2test1
Timecop Wmcube Gdk	=1.1test6
Timecop Wmcube Gdk	=1.0pl8
Timecop Wmcube Gdk	=1.1test1
Timecop Wmcube Gdk	=1.1
Timecop Wmcube Gdk	=1.1test4
FreeBSD Kernel	=6.2-stable

Remedy

http://www.securityfocus.com/bid/2609

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2001-0424?
CVE-2001-0424 has been classified as a high severity vulnerability due to the potential for local users to execute arbitrary commands.
How do I fix CVE-2001-0424?
To fix CVE-2001-0424, ensure that the application properly drops group privileges before executing any programs.
Which versions of BubbleMon are affected by CVE-2001-0424?
CVE-2001-0424 affects BubbleMon versions 1.0, 1.0pl1 through 1.0pl9, and all versions up to 1.31.
Can remote attackers exploit CVE-2001-0424?
No, CVE-2001-0424 is a local vulnerability, meaning only local users can exploit this flaw.
What type of vulnerability is CVE-2001-0424?
CVE-2001-0424 is a privilege escalation vulnerability that allows local users to gain elevated permissions.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/remedy
agent/weakness
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/timecop
canonical/timecop wmcube gdk
version/timecop wmcube gdk/1.0pl7
version/timecop wmcube gdk/1.23
version/timecop wmcube gdk/1.0pl3
version/timecop wmcube gdk/1.22
version/timecop wmcube gdk/1.0pl6
version/timecop wmcube gdk/1.31
version/timecop wmcube gdk/1.1test3
version/timecop wmcube gdk/1.0pl4
version/timecop wmcube gdk/1.21test1
version/timecop wmcube gdk/1.0pl2
version/timecop wmcube gdk/1.3
version/timecop wmcube gdk/1.0
version/timecop wmcube gdk/1.1test5
version/timecop wmcube gdk/1.21
version/timecop wmcube gdk/1.2
version/timecop wmcube gdk/1.1test2
version/timecop wmcube gdk/1.1test7
version/timecop wmcube gdk/1.0pl1
version/timecop wmcube gdk/1.0pl9
version/timecop wmcube gdk/1.2test1
version/timecop wmcube gdk/1.1test6
version/timecop wmcube gdk/1.0pl8
version/timecop wmcube gdk/1.1test1
version/timecop wmcube gdk/1.1
version/timecop wmcube gdk/1.1test4
vendor/freebsd
canonical/freebsd kernel
version/freebsd kernel/6.2-stable