Lucene search

[email protected]CVE-2000-0941

HistoryJan 22, 2001 - 5:00 a.m.

CVE-2000-0941

2001-01-2205:00:00

[email protected]

web.nvd.nist.gov

cve-2000-0941

kootenay

web kw

whois 1.0

cgi

remote attacks

command execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.188 Low

EPSS

Percentile

96.3%

JSON

Kootenay Web KW Whois 1.0 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the “whois” parameter.

Affected configurations

NVD

Node

kootenay_web_inckootenay_web_inc_whoisMatch1.0

CPENameOperatorVersion
kootenay_web_inc:kootenay_web_inc_whoiskootenay web inc kootenay web inc whoiseq1.0

CPE	Name	Operator	Version
kootenay_web_inc:kootenay_web_inc_whois	kootenay web inc kootenay web inc whois	eq	1.0

References

archives.neohapsis.com/archives/bugtraq/2000-10/0419.html

archives.neohapsis.com/archives/bugtraq/2000-10/0420.html

www.kootenayweb.bc.ca/scripts/whois.txt

www.securityfocus.com/bid/1883

exchange.xforce.ibmcloud.com/vulnerabilities/5438

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.188 Low

EPSS

Percentile

96.3%

JSON

Related for CVE-2000-0941

nessus1 cvelist1 nvd1