Vulnerability Details : CVE-2001-0873
uuxqt in Taylor UUCP package does not properly remove dangerous long options, which allows local users to gain privileges by calling uux and specifying an alternate configuration file with the --config option.
Exploit prediction scoring system (EPSS) score for CVE-2001-0873
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ % EPSS Score History EPSS FAQ
CVSS scores for CVE-2001-0873
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
References for CVE-2001-0873
-
http://www.securityfocus.com/archive/1/212892
Exploit;Vendor Advisory
-
http://www.novell.com/linux/security/advisories/2001_038_uucp_txt.html
-
http://www.debian.org/security/2001/dsa-079
-
http://www.calderasystems.com/support/security/advisories/CSSA-2001-033.0.txt
Patch;Vendor Advisory
-
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000425
Patch;Vendor Advisory
-
http://rhn.redhat.com/errata/RHSA-2001-165.html
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/7099
-
http://marc.info/?l=bugtraq&m=100715446131820
-
http://www.securityfocus.com/bid/3312
Exploit;Patch;Vendor Advisory
Products affected by CVE-2001-0873
- cpe:2.3:a:ian_lance_taylor:taylor_uucp:1.0.6:*:*:*:*:*:*:*