Lucene search

[email protected]CVE-2000-0614

HistoryJul 10, 2000 - 4:00 a.m.

CVE-2000-0614

2000-07-1004:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0614

linux

remote attack

file overwrite

encoded attachments

tnef

7.6 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

70.1%

JSON

Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output.

CPENameOperatorVersion
suse:suse_linuxsuse suse linuxeq6.3
suse:suse_linuxsuse suse linuxeq6.4

CPE	Name	Operator	Version
suse:suse_linux	suse suse linux	eq	6.3
suse:suse_linux	suse suse linux	eq	6.4

References

archives.neohapsis.com/archives/vendor/2000-q3/0002.html

www.securityfocus.com/bid/1450

7.6 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

70.1%

JSON