CVE-2000-0338
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Apr 23, 2000
Updated: Nov 20, 2024
CWE ID 667
Summary
CVE-2000-0338 is a denial-of-service vulnerability affecting Concurrent Versions Software (CVS). The issue arises due to CVS using predictable temporary file names for locking mechanisms. Malicious local users can exploit this by creating the lock directory before it is generated for legitimate usage, denying access to affected CVS users. This vulnerability may lead to service disruptions and productivity loss in environments that rely on CVS for version control.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share