File Descriptor Swapping Vulnerability in GNU userv 1.0.0 and Earlier

File Descriptor Swapping Vulnerability in GNU userv 1.0.0 and Earlier

CVE-2000-0786 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

GNU userv 1.0.0 and earlier does not properly perform file descriptor swapping, which can corrupt the USERV_GROUPS and USERV_GIDS environmental variables and allow local users to bypass some access restrictions.

Learn more about our User Device Pen Test.