CVE-2000-0996
OpenBSD - Local Privilege Escalation via Format String Vulnerability in su
Title source: llmDescription
Format string vulnerability in OpenBSD su program (and possibly other BSD-based operating systems) allows local attackers to gain root privileges via a malformed shell.
References (3)
Core 3
Core References
Patch x_refsource_misc
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5636
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/6124
Scores
EPSS
0.0006
EPSS Percentile
20.0%
Details
Status
published
Products (1)
openbsd/openbsd
Published
Dec 19, 2000
Tracked Since
Feb 18, 2026