Lucene search

[email protected]CVE-1999-1263

HistoryAug 15, 2003 - 4:00 a.m.

CVE-1999-1263

2003-08-1504:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

security flaw

metamail

remote attack

e-mail message

uuencode

attachment overwrite

cve-1999-1263

7.6 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

46.5%

JSON

Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file.

CPENameOperatorVersion
metamail_corporation:metamailmetamail corporation metamaille2.7

CPE	Name	Operator	Version
metamail_corporation:metamail	metamail corporation metamail	le	2.7

References

marc.info/?l=bugtraq&m=87773365324657&w=2

exchange.xforce.ibmcloud.com/vulnerabilities/1677

7.6 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

46.5%

JSON