Lucene search

[email protected]CVE-1999-1334

HistoryDec 31, 1999 - 5:00 a.m.

CVE-1999-1334

1999-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-1999-1334

buffer overflow

elm 2.4

arbitrary command execution

software vulnerability

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.4%

JSON

Multiple buffer overflows in filter command in Elm 2.4 allows attackers to execute arbitrary commands via (1) long From: headers, (2) long Reply-To: headers, or (3) via a long -f (filterfile) command line argument.

CPENameOperatorVersion
elm_development_group:elmelm development group elmeq2.4

CPE	Name	Operator	Version
elm_development_group:elm	elm development group elm	eq	2.4

References

marc.info/?l=bugtraq&m=88609666024181&w=2

www.redhat.com/support/errata/rh50-errata-general.html#elm

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.4%

JSON