Lucene search

MitreCVE-1999-0687

HistoryJan 04, 2000 - 5:00 a.m.

CVE-1999-0687

2000-01-0405:00:00

mitre

web.nvd.nist.gov

tooltalk

ttsession daemon

rpc authentication

remote attack

execute commands.

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.011

Percentile

84.8%

JSON

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

Affected configurations

Nvd

Node

cdecdeMatch1.0.1

cdecdeMatch1.0.2

cdecdeMatch1.1

cdecdeMatch1.2

cdecdeMatch2.0

cdecdeMatch2.1

cdecdeMatch2.120

Node

digitalunixMatch4.0d

digitalunixMatch4.0f

ibmaixMatch4.1

ibmaixMatch4.1.1

ibmaixMatch4.1.2

ibmaixMatch4.1.3

ibmaixMatch4.1.4

ibmaixMatch4.1.5

ibmaixMatch4.2

ibmaixMatch4.2.1

ibmaixMatch4.3

ibmaixMatch4.3.1

ibmaixMatch4.3.2

sunsolarisMatch2.4x86

sunsolarisMatch2.5x86

sunsolarisMatch2.5.1x86

sunsolarisMatch2.6

sunsolarisMatch7.0x86

sunsunosMatch-

sunsunosMatch4.1.3u1

sunsunosMatch4.1.4

sunsunosMatch5.3

sunsunosMatch5.4

sunsunosMatch5.5

sunsunosMatch5.5.1

sunsunosMatch5.7

VendorProductVersionCPE
cdecde1.0.1cpe:2.3:a:cde:cde:1.0.1:*:*:*:*:*:*:*
cdecde1.0.2cpe:2.3:a:cde:cde:1.0.2:*:*:*:*:*:*:*
cdecde1.1cpe:2.3:a:cde:cde:1.1:*:*:*:*:*:*:*
cdecde1.2cpe:2.3:a:cde:cde:1.2:*:*:*:*:*:*:*
cdecde2.0cpe:2.3:a:cde:cde:2.0:*:*:*:*:*:*:*
cdecde2.1cpe:2.3:a:cde:cde:2.1:*:*:*:*:*:*:*
cdecde2.120cpe:2.3:a:cde:cde:2.120:*:*:*:*:*:*:*
digitalunix4.0dcpe:2.3:o:digital:unix:4.0d:*:*:*:*:*:*:*
digitalunix4.0fcpe:2.3:o:digital:unix:4.0f:*:*:*:*:*:*:*
ibmaix4.1cpe:2.3:o:ibm:aix:4.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cde	cde	1.0.1	cpe:2.3:a:cde:cde:1.0.1:::::::*
cde	cde	1.0.2	cpe:2.3:a:cde:cde:1.0.2:::::::*
cde	cde	1.1	cpe:2.3:a:cde:cde:1.1:::::::*
cde	cde	1.2	cpe:2.3:a:cde:cde:1.2:::::::*
cde	cde	2.0	cpe:2.3:a:cde:cde:2.0:::::::*
cde	cde	2.1	cpe:2.3:a:cde:cde:2.1:::::::*
cde	cde	2.120	cpe:2.3:a:cde:cde:2.120:::::::*
digital	unix	4.0d	cpe:2.3:o:digital:unix:4.0d:::::::*
digital	unix	4.0f	cpe:2.3:o:digital:unix:4.0f:::::::*
ibm	aix	4.1	cpe:2.3:o:ibm:aix:4.1:::::::*

Rows per page:

1-10 of 331

References

sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192

www.ciac.org/ciac/bulletins/k-001.shtml

www.securityfocus.com/bid/637

www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.011

Percentile

84.8%

JSON

Related for CVE-1999-0687