Lucene search

[email protected]CVE-2000-0343

HistoryMay 18, 2000 - 4:00 a.m.

CVE-2000-0343

2000-05-1804:00:00

[email protected]

web.nvd.nist.gov

cve-2000-0343

sniffit 0.3.x

buffer overflow

logging

remote command execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.6%

JSON

Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to execute arbitrary commands via a long MAIL FROM mail header.

Affected configurations

NVD

Node

brecht_claerhoutsniffitMatch0.3.6hip

brecht_claerhoutsniffitMatch0.3.7beta

CPENameOperatorVersion
brecht_claerhout:sniffitbrecht claerhout sniffiteq0.3.6hip
brecht_claerhout:sniffitbrecht claerhout sniffiteq0.3.7beta

CPE	Name	Operator	Version
brecht_claerhout:sniffit	brecht claerhout sniffit	eq	0.3.6hip
brecht_claerhout:sniffit	brecht claerhout sniffit	eq	0.3.7beta

References

www.securityfocus.com/bid/1158

www.securityfocus.com/templates/archive.pike?list=1&msg=200005021736.TAA01991%40ALuSSi

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.6%

JSON

Related for CVE-2000-0343

nvd1 cvelist1