CVE-2000-1095

modutils 2.3.x - Command Injection

Title source: llm

Description

modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Michal Zalewski · bashlocallinux

https://www.exploit-db.com/exploits/20402

View Code ZIP pw:eip

References (8)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2000-11/0179.html

[Third Party Advisory] http://archives.neohapsis.com/archives/linux/suse/2000-q4/0596.html

[Vendor Advisory] http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000340

[Various Sources] http://www.linux-mandrake.com/en/security/MDKSA-2000-071-1.php3?dis=7.1

[Patch, Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2000-108.html

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/1936

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/5516

[Third Party Advisory] http://www.debian.org/security/2000/20001120

Scores

EPSS 0.0021

EPSS Percentile 43.5%

Details

Status published

Products (7)

conectiva/linux 5.1

immunix/immunix 6.2

immunix/immunix 7.0_beta

mandrakesoft/mandrake_linux 7.2

redhat/linux 7.0

suse/suse_linux 6.4

suse/suse_linux 7.0

Published Jan 09, 2001

Tracked Since Feb 18, 2026