CVE-2001-1327

{"id": "CVE-2001-1327", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2001-05-24T04:00:00.000", "references": [{"url": "http://www.iss.net/security_center/static/9988.php", "source": "cve@mitre.org"}, {"url": "http://www.turbolinux.com/pipermail/tl-security-announce/2001-May/000313.html", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "pmake before 2.1.35 in Turbolinux 6.05 and earlier is installed with setuid root privileges, which could allow local users to gain privileges by exploiting vulnerabilities in pmake or programs that are used by pmake."}], "lastModified": "2008-09-05T20:26:15.937", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:berkeley_softworks:pmake:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52EC3D1B-6D8B-40EE-B385-46B1D1A5A19C", "versionEndIncluding": "2.1.35"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}