CVE-2000-0378

Redhat Linux — NVD-CWE-Other

EPSS 0.00416
  • Published: 2000-05-03T04:00:00.000
  • Last modified: 2025-04-03T01:03:51.193
  • Vendors: Redhat
  • Products: Linux
  • CWE: NVD-CWE-Other

CVE-2000-0378 — The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can be maintained after the user logs out, which allows that user to sniff activity on these devices when subsequent users log in. [Weakness: NVD-CWE-Other]

Related CVE by CWE

No closely related CVE found.

Risk snapshot

EPSS: n/a   |   KEV: not listed

Related CVE by CWE

No related CWE found.

Top CVE for Vendor

No items for this vendor.

Recently Exploited Similar Vulnerabilities

No recent KEV-listed items for this vendor/product.

The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can be maintained after the user logs out, which allows that user to sniff activity on these devices when subsequent users log in.

🧠 Explainer: What this vulnerability means

Summary: A flaw in Linux from Redhat (CWE: unspecified) can be exploited.

Impact: It may allow privilege escalation, data exposure, or service interruption.

Mitigation: Apply the latest vendor patch or update to a fixed version; disable vulnerable modules where possible.

CWE: NVD-CWE-Other
Redhat Linux

No explicit mitigation/advisory links found in references.