CVE-2000-0844

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

Referenced by CVEs: CVE-2000-1207
Score10.0
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactCOMPLETE
Integrity ImpactCOMPLETE
Availability ImpactCOMPLETE
Published2000-11-14 12:00:00.000-05
Last Modified2018-10-30 12:26:22.000-04

Vulnerable Software List

VendorProductVersions
Debian Debian Linux 2.0, 2.1, 2.2, 2.3
Caldera Openlinux Ebuilder 3.0
Caldera Openlinux Eserver 2.3
Caldera Openlinux
Slackware Slackware Linux 7.0, 7.1
Redhat Linux 5.0, 5.1, 5.2, 6.0, 6.1, 6.2
Sgi Irix 6.2, 6.3, 6.4, 6.5, 6.5.1, 6.5.2m, 6.5.3, 6.5.3f, 6.5.3m, 6.5.4, 6.5.6, 6.5.7, 6.5.8
Conectiva Linux 4.0, 4.0es, 4.1, 4.2, 5.0, 5.1
Ibm Aix 3.2, 3.2.4, 3.2.5, 4.0, 4.1, 4.1.1, 4.1.2, 4.1.3, 4.1.4, 4.1.5, 4.2, 4.2.1, 4.3, 4.3.1, 4.3.2
Turbolinux Turbolinux 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4
Sun Sunos 5.0, 5.1, 5.2, 5.3, 5.4, 5.5, 5.5.1, 5.7, 5.8
Sun Solaris 2.6
Trustix Secure Linux 1.0, 1.1
Suse Suse Linux 6.1, 6.2, 6.3, 6.4, 7.0
Immunix Immunix 6.2
Mandrakesoft Mandrake Linux 7.0, 7.1

References

SourceLink
SGI20000901-01-P
BUGTRAQ20000902 Conectiva Linux Security Announcement - glibc
BUGTRAQ20000904 UNIX locale format string vulnerability
AIXAPARIY13753
COMPAQSSRT0689U
CALDERACSSA-2000-030.0
DEBIAN20000902 glibc: local root exploit
SUSE20000906 glibc locale security problem
REDHATRHSA-2000:057
BID1634
XFunix-locale-format-string(5176)