ID CVE-2001-1327
Summary pmake before 2.1.35 in Turbolinux 6.05 and earlier is installed with setuid root privileges, which could allow local users to gain privileges by exploiting vulnerabilities in pmake or programs that are used by pmake.
References
Vulnerable Configurations
  • cpe:2.3:a:berkeley_softworks:pmake:*:*:*:*:*:*:*:*
    cpe:2.3:a:berkeley_softworks:pmake:*:*:*:*:*:*:*:*
CVSS
Base: 4.6 (as of 05-09-2008 - 20:26)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:P/A:P
refmap via4
turbo TLSA2001024
xf pmake-binary-gain-privileges(9988)
Last major update 05-09-2008 - 20:26
Published 24-05-2001 - 04:00
Last modified 05-09-2008 - 20:26
Back to Top