Lucene search

MitreCVE-2000-0927

HistoryMay 07, 2001 - 4:00 a.m.

CVE-2000-0927

2001-05-0704:00:00

mitre

web.nvd.nist.gov

quotaadvisor 4.1

alternative data streams

bypass quota restrictions

cve-2000-0927.

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.001

Percentile

40.3%

JSON

WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions.

Affected configurations

Nvd

Node

wquinnquotaadvisorMatch4.1

VendorProductVersionCPE
wquinnquotaadvisor4.1cpe:2.3:a:wquinn:quotaadvisor:4.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wquinn	quotaadvisor	4.1	cpe:2.3:a:wquinn:quotaadvisor:4.1:::::::*

References

archives.neohapsis.com/archives/bugtraq/2000-09//0331.html

archives.neohapsis.com/archives/ntbugtraq/2000-q3/0173.html

www.securityfocus.com/bid/1724

exchange.xforce.ibmcloud.com/vulnerabilities/5302

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.001

Percentile

40.3%

JSON

Related for CVE-2000-0927