Vulnerability in Conectiva Linux
CVE-2001-0128
Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges.
EPSS: 0.004 (33.6th percentile) — read the EPSS interpretation.
Affected products
- Conectiva Linux — versions 4.2, 5.0, 5.1
- Freebsd — versions 6.2
- Mandrakesoft Mandrake_linux — versions 7.1, 7.2
- Zope
- Debian Debian_linux — versions 2.2
- Redhat Linux — versions 6.1, 6.2, 7.0
- Redhat Linux_powertools — versions 6.1, 6.2, 7.0
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (vendor-advisory, Patch, x_refsource_MANDRAKE)
- cve@mitre.org (vendor-advisory, x_refsource_CONECTIVA)
- cve@mitre.org (vendor-advisory, Patch, x_refsource_DEBIAN, Vendor Advisory)