← back
CVE-2000-1074

CVE-2000-1074

EPSS 4.1%
csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/20276unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/5757http://www.atstake.com/research/advisories/2000/a100900-1.txthttp://www.osvdb.org/7209http://www.securityfocus.com/bid/1769