CVE-2000-0118

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jun 9, 1999

Updated: Nov 20, 2024

Summary

CVE-2000-0118 is a vulnerability affecting the Red Hat Linux su program. If an attacker manages to kill the su process before it times out, the program will not log failed password guesses. This allows for unlimited attempts to guess the password, making it easier for local attackers to gain unauthorized access to the system through brute force methods. This issue highlights the importance of proper logging and system monitoring to detect and prevent such attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Red Hat Enterprise Linux
SunOS
Sun Solaris

Affected Vendors

Red Hat
Oracle Corp
Sun.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlSou
https://www.cve.org/CVERecord?id=CVE-2000-0118
https://nvd.nist.gov/vuln/detail/CVE-2000-0118

Back to Vulnerability Database