1. CVE-Search
  2. CVE-2001-0873
ID CVE-2001-0873
Summary uuxqt in Taylor UUCP package does not properly remove dangerous long options, which allows local users to gain privileges by calling uux and specifying an alternate configuration file with the --config option.
References
Vulnerable Configurations
  • cpe:2.3:a:ian_lance_taylor:taylor_uucp:1.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:ian_lance_taylor:taylor_uucp:1.0.6:*:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 10-10-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
redhat via4
advisories
rhsa
id RHSA-2001:165
refmap via4
bid 3312
bugtraq
  • 20010908 Multiple vendor 'Taylor UUCP' problems.
  • 20011130 Redhat 7.0 local root (via uucp) (attempt 2)
caldera CSSA-2001-033.0
conectiva CLA-2001:425
debian DSA-079
suse SuSE-SA:2001:38
xf uucp-argument-gain-privileges(7099)
Last major update 10-10-2017 - 01:29
Published 21-12-2001 - 05:00
Last modified 10-10-2017 - 01:29
Back to Top