CVE-2000-1074

Published: Jan 22, 2001

Modified: Aug 8, 2024

PUBLISHED

Description

csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

7209

vdb-entry

x_refsource_OSVDB

ical-csstart-gain-access(5757)

vdb-entry

x_refsource_XF

1769

vdb-entry

x_refsource_BID

A100900-1

vendor-advisory

x_refsource_ATSTAKE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2000-1074

Description

Affected Products

References