Back
CVE-2000-1043
Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
Published: Dec 11, 2000
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (3)
| Vendor | Product | Version |
|---|---|---|
| mandrakesoft | mandrake_linux | 6.1 |
| mandrakesoft | mandrake_linux | 7.0 |
| mandrakesoft | mandrake_linux | 7.1 |
GitHub Security Advisory GHSA-2vq2-p76v-j88p
Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux...
References (4)
- http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1 Patch, Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5731
- http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1 Patch, Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5731
Risk Scores
CVSS Score
10.0 / 10
EPSS Score
0.46%
Top 36% most likely to be exploited
Threat Score
40.1 / 100
Data Sources
NVD
EPSS
GitHub