GNU C Library 2.1.3.10 on Debian Linux LD_DEBUG_OUTPUT/LD_DEBUG symlink
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 2.8 | $0-$5k | 0.00 |
Summary
A vulnerability classified as problematic was found in GNU C Library 2.1.3.10 on Debian Linux. Affected by this vulnerability is an unknown functionality. The manipulation of the argument LD_DEBUG_OUTPUT/LD_DEBUG as part of Environment Variable results in symlink. This vulnerability is known as CVE-2000-0959. No exploit is available. Upgrading the affected component is advised.
Details
A vulnerability was found in GNU C Library 2.1.3.10 on Debian Linux (Software Library). It has been classified as problematic. Affected is an unknown function. The manipulation of the argument LD_DEBUG_OUTPUT/LD_DEBUG as part of a Environment Variable leads to a symlink vulnerability. CWE is classifying the issue as CWE-61. The product, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the product to operate on unauthorized files. This is going to have an impact on integrity. CVE summarizes:
glibc2 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environmental variables when a program is spawned from a setuid program, which could allow local users to overwrite files via a symlink attack.
The weakness was published 12/19/2000 (Website). The advisory is available at securityfocus.com. This vulnerability is traded as CVE-2000-0959. The exploitability is told to be difficult. Local access is required to approach this attack. The exploitation doesn't require any form of authentication. Technical details are known, but there is no available exploit.
Upgrading eliminates this vulnerability.
The vulnerability is also documented in the databases at X-Force (5299) and SecurityFocus (BID 1719†). If you want to get best quality of vulnerability data, you may have to visit VulDB.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.gnu.org/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 2.9VulDB Meta Temp Score: 2.8
VulDB Base Score: 2.9
VulDB Temp Score: 2.8
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: SymlinkCWE: CWE-61 / CWE-59
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Timeline
09/27/2000 🔍12/19/2000 🔍
12/19/2000 🔍
07/01/2014 🔍
05/28/2018 🔍
Sources
Vendor: gnu.orgAdvisory: securityfocus.com⛔
Status: Not defined
CVE: CVE-2000-0959 (🔍)
GCVE (CVE): GCVE-0-2000-0959
GCVE (VulDB): GCVE-100-16170
X-Force: 5299 - Glibc2 file overwrite
SecurityFocus: 1719 - Debian glibc 2 Symlink Vulnerability
Entry
Created: 07/02/2014 00:38Updated: 05/28/2018 09:17
Changes: 07/02/2014 00:38 (54), 05/28/2018 09:17 (3)
Complete: 🔍
Cache ID: 216::103
If you want to get best quality of vulnerability data, you may have to visit VulDB.
No comments yet. Languages: en.
Please log in to comment.