Lucene search

[email protected]CVE-2000-0401

HistoryJun 15, 2000 - 4:00 a.m.

CVE-2000-0401

2000-06-1504:00:00

[email protected]

web.nvd.nist.gov

cve-2000-0401

buffer overflow

pdgsoft

remote attack

arbitrary command execution

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.024 Low

EPSS

Percentile

90.0%

JSON

Buffer overflows in redirect.exe and changepw.exe in PDGSoft shopping cart allow remote attackers to execute arbitrary commands via a long query string.

Affected configurations

NVD

Node

pdgsoftpdg_shopping_cartMatch1.5

CPENameOperatorVersion
pdgsoft:pdg_shopping_cartpdgsoft pdg shopping carteq1.5

CPE	Name	Operator	Version
pdgsoft:pdg_shopping_cart	pdgsoft pdg shopping cart	eq	1.5

References

marc.info/?l=bugtraq&m=95928319715983&w=2

marc.info/?l=ntbugtraq&m=95928667119963&w=2

www.pdgsoft.com/Security/security2.html

www.securityfocus.com/bid/1256

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.024 Low

EPSS

Percentile

90.0%

JSON

Related for CVE-2000-0401

openvas1 nessus1 cvelist1 nvd1