CVE-2000-0271

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Apr 18, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0271 is a vulnerability affecting Emacs 20 and its read-passwd function. The issue lies in the inadequate clearing of recently typed keys history. An attacker who gains access to the system can potentially view unencrypted passwords as they were previously entered, posing a significant security risk. This vulnerability can be exploited through various means, including shoulder surfing or gaining access to the system logs. It is recommended that users update their Emacs installation to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

GNU Emacs

Affected Vendors

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlXLe
https://www.cve.org/CVERecord?id=CVE-2000-0271
https://nvd.nist.gov/vuln/detail/CVE-2000-0271

Back to Vulnerability Database