CVE-2000-0269

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Apr 18, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0269 is a vulnerability affecting Emacs 20. This issue stems from Emacs' failure to appropriately set permissions for a slave PTY (Pseudo-Terminal) device when initiating a new subprocess. Consequently, local users can potentially gain unauthorized access to the communications exchanged between Emacs and the subprocess, either reading sensitive information or modifying it. This vulnerability constitutes a significant security risk, as it could lead to data leakage or privilege escalation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

GNU Emacs

Affected Vendors

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlaQs
https://www.cve.org/CVERecord?id=CVE-2000-0269
https://nvd.nist.gov/vuln/detail/CVE-2000-0269

Back to Vulnerability Database