Vulnerability Details CVE-2001-0424
BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 31.0%
CVSS Severity
CVSS v2 Score 7.2
Products affected by CVE-2001-0424
-
cpe:2.3:a:timecop:bubblemon:1.0
-
cpe:2.3:a:timecop:bubblemon:1.0pl1
-
cpe:2.3:a:timecop:bubblemon:1.0pl2
-
cpe:2.3:a:timecop:bubblemon:1.0pl3
-
cpe:2.3:a:timecop:bubblemon:1.0pl4
-
cpe:2.3:a:timecop:bubblemon:1.0pl6
-
cpe:2.3:a:timecop:bubblemon:1.0pl7
-
cpe:2.3:a:timecop:bubblemon:1.0pl8
-
cpe:2.3:a:timecop:bubblemon:1.0pl9
-
cpe:2.3:a:timecop:bubblemon:1.1
-
cpe:2.3:a:timecop:bubblemon:1.1test1
-
cpe:2.3:a:timecop:bubblemon:1.1test2
-
cpe:2.3:a:timecop:bubblemon:1.1test3
-
cpe:2.3:a:timecop:bubblemon:1.1test4
-
cpe:2.3:a:timecop:bubblemon:1.1test5
-
cpe:2.3:a:timecop:bubblemon:1.1test6
-
cpe:2.3:a:timecop:bubblemon:1.1test7
-
cpe:2.3:a:timecop:bubblemon:1.2
-
cpe:2.3:a:timecop:bubblemon:1.21
-
cpe:2.3:a:timecop:bubblemon:1.21test1
-
cpe:2.3:a:timecop:bubblemon:1.22
-
cpe:2.3:a:timecop:bubblemon:1.23
-
cpe:2.3:a:timecop:bubblemon:1.2test1
-
cpe:2.3:a:timecop:bubblemon:1.3
-
cpe:2.3:a:timecop:bubblemon:1.31
-
cpe:2.3:o:freebsd:freebsd:6.2