CVE-2001-0739
CVE-2001-0739 is a high-severity vulnerability in Engardelinux Secure Linux with a CVSS 2.0 base score of 7.2. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: High (CVSS 2.0 base score 7.2)
- EPSS exploit prediction: 0% (31st percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Engardelinux Secure Linux
- Published:
- Last modified:
Description
Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges.
Frequently asked questions
- What is CVE-2001-0739?
- Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges.
- How severe is CVE-2001-0739?
- CVE-2001-0739 has a CVSS 2.0 base score of 7.2, rated high severity.
- Is CVE-2001-0739 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (31st percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2001-0739?
- CVE-2001-0739 affects Engardelinux Secure Linux. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2001-0739?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2001-0739 published?
- CVE-2001-0739 was published on 2001-10-18 and last updated on 2026-06-16.
References
- http://www.linuxsecurity.com/advisories/other_advisory-1404.html
- http://www.redhat.com/support/errata/RHSA-2001-126.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7404
Affected products (1)
- cpe:2.3:o:engardelinux:secure_linux:1.0.1:*:*:*:*:*:*:*
More vulnerabilities in Engardelinux Secure Linux
- CVE-2001-1240 — Critical (CVSS 10.0): The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain…
- CVE-2002-0083 — Critical (CVSS 9.8): Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to…
- CVE-2003-0962 — High (CVSS 7.5): Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute…
- CVE-2002-0002 — High (CVSS 7.5): Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows…
- CVE-2004-0535 — Low (CVSS 2.1): The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows…
- CVE-2001-0736 — Low (CVSS 2.1): Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to…