Lucene search

[email protected]CVE-1999-0985

HistoryFeb 04, 2000 - 5:00 a.m.

CVE-1999-0985

2000-02-0405:00:00

[email protected]

web.nvd.nist.gov

cve-1999-0985

cc whois program

remote command execution

shell metacharacters

nvd.

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.055 Low

EPSS

Percentile

93.2%

JSON

CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry.

Affected configurations

NVD

Node

cccc_whoisMatch1.0

CPENameOperatorVersion
cc:cc_whoiscc cc whoiseq1.0

CPE	Name	Operator	Version
cc:cc_whois	cc cc whois	eq	1.0

References

exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0985

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.055 Low

EPSS

Percentile

93.2%

JSON

Related for CVE-1999-0985

cvelist1 nvd1