Privilege Escalation Vulnerability in GNU Groff by The GNU Project
CVE-2000-0803

Currently unrated

Key Information:

Vendor: Gnu
Status: Groff
Vendor: CVE Published:; 19 December 2000

What is CVE-2000-0803?

GNU Groff contains a vulnerability that permits local users to elevate their privileges by manipulating the current working directory. By embedding a malicious postpro directive within a device description file, an attacker can execute harmful actions when another user invokes the groff command. This flaw emphasizes the necessity for rigid access controls and secure configurations to mitigate the risk associated with local user interactions.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/5280

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 19, 2000
Vulnerability Reserved
Sep 22, 2000

Gnu

What is CVE-2000-0803?

References

Timeline