CVE-2000-1220
CVSS 2.0 Score 10 of 10 (high)
Details
Published Jan 8, 2000
Updated: Nov 20, 2024
Summary
CVE-2000-1220 is a vulnerability affecting the line printer daemon (lpd) in the lpr package of multiple Linux operating systems. This issue permits local users to elevate their privileges to root level by exploiting a weakness in sendmail's handling of arbitrary command line arguments, specifically via the -C option used to specify a configuration file. Successful exploitation of this vulnerability allows attackers to execute arbitrary commands with root privileges, posing a significant security risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- SGI IRAX
- Red Hat Enterprise Linux
Affected Vendors
- Red Hat
- Saskatchewan Government Insurance