CVE-2000-1202

Currently unrated

Key Information:

Vendor: IBM
Status: Http Server Ssl Module Common
Vendor: CVE Published:; 31 August 2001

Summary

ikeyman in IBM IBMHSSSB 1.0 sets the CLASSPATH environmental variable to include the user's own CLASSPATH directories before the system's directories, which allows a malicious local user to execute arbitrary code as root via a Trojan horse Ikeyman class.

References

http://www.securityfocus.com/bid/1092

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/4235

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/54073

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Aug 31, 2001
Vulnerability Reserved
Aug 31, 2001