CVE-2000-0118

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jun 9, 1999
Updated: Oct 30, 2018

Summary

CVE-2000-0118 is a vulnerability affecting the Red Hat Linux su program. This issue allows local attackers to engage in brute force password guessing without logging, as the su process fails to record failed attempts if it is terminated prior to expiration. Consequently, an attacker can attempt numerous password combinations without leaving a trace, increasing the risk of unauthorized access. This vulnerability underscores the importance of proper configuration and monitoring of login processes to prevent potential security breaches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Red Hat Enterprise Linux
  • SunOS
  • Sun Solaris

Affected Vendors

  • Red Hat
  • Oracle Corp
  • Sun.