CVE-2000-0338

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 23, 2000
Updated: Nov 20, 2024
CWE ID 667

Summary

CVE-2000-0338 is a denial-of-service vulnerability affecting Concurrent Versions Software (CVS). The issue arises due to CVS using predictable temporary file names for locking mechanisms. Malicious local users can exploit this by creating the lock directory before it is generated for legitimate usage, denying access to affected CVS users. This vulnerability may lead to service disruptions and productivity loss in environments that rely on CVS for version control.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share