CVE-2000-0378 in Linuxinfo

Summary

The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can be maintained after the user logs out, which allows that user to sniff activity on these devices when subsequent users log in.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Disclosure

05/03/2000

Moderation

VulDB entry created

Entries

VDB-15520 (1)

CPE

ready

CWE

CWE-269 (Confirmed)

Exploit

Download

CVSS

8.4

EPSS

0.00948

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2000-0378
NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-0378
CVE Details	https://www.cvedetails.com/cve/CVE-2000-0378/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!