Lucene search

[email protected]CVE-2000-0843

HistoryNov 14, 2000 - 5:00 a.m.

CVE-2000-0843

2000-11-1405:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0843

buffer overflow

pam_smb

pam_ntdom

remote execution

long user login

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.009 Low

EPSS

Percentile

82.9%

JSON

Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name.

CPENameOperatorVersion
dave_airlie:pam_smbdave airlie pam smbeq1.1.5
luke_kenneth_casson_leighton:pam_ntdomluke kenneth casson leighton pam ntdomeq0.23

CPE	Name	Operator	Version
dave_airlie:pam_smb	dave airlie pam smb	eq	1.1.5
luke_kenneth_casson_leighton:pam_ntdom	luke kenneth casson leighton pam ntdom	eq	0.23

References

archives.neohapsis.com/archives/bugtraq/2000-09/0073.html

archives.neohapsis.com/archives/bugtraq/2000-09/0114.html

www.debian.org/security/2000/20000911

www.linux-mandrake.com/en/security/MDKSA-2000-047.php3

www.novell.com/linux/security/advisories/adv8_draht_pam_smb_txt.html

www.securityfocus.com/bid/1666

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.009 Low

EPSS

Percentile

82.9%

JSON

Related for CVE-2000-0843

nessus1