Lucene search
MitreCVE-2000-1072HistoryJan 22, 2001 - 5:00 a.m.
CVE-2000-1072
2001-01-2205:00:00
mitre
web.nvd.nist.gov
24
cve-2000-1072
ical 2.1
patch 2
writeable permissions
command execution
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.5
Confidence
High
EPSS
0
Percentile
0.4%
iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse.
Affected configurations
Node
netscapeiplanet_icalMatch2.1patch2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| netscape | iplanet_ical | 2.1 | cpe:2.3:a:netscape:iplanet_ical:2.1:patch2:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Netscape iCal 2.1 Patch2 - iPlanet iCal 'iplncal.sh' Permissions
2000-10-10 00:00:00
cvelist
cvelist
CVE-2000-1072
2001-01-22 05:00:00
nvd
nvd
CVE-2000-1072
2000-12-11 05:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.5
Confidence
High
EPSS
0
Percentile
0.4%
Related for CVE-2000-1072