CVE Catalog

CVE-2000-0269

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.36%

28th percentile — higher than 28% of all known CVEs

Summary

Emacs 20 does not properly set permissions for a slave PTY device when starting a new subprocess, which allows local users to read or modify communications between Emacs and the subprocess.

Risk Assessment

Local users may gain access to sensitive data or manipulate communications, potentially compromising the integrity and confidentiality of information.

Recommendation

It is recommended to upgrade to a newer version of Emacs that addresses the permission management for PTY devices.

Original NVD description (English source)

Emacs 20 does not properly set permissions for a slave PTY device when starting a new subprocess, which allows local users to read or modify communications between Emacs and the subprocess.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS