Lucene search

[email protected]CVE-2000-0950

HistoryDec 19, 2000 - 5:00 a.m.

CVE-2000-0950

2000-12-1905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0950

vulnerability

fwtk

x-gw

local user

command execution

format string

execution via malformed name

7.9 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

14.2%

JSON

Format string vulnerability in x-gw in TIS Firewall Toolkit (FWTK) allows local users to execute arbitrary commands via a malformed display name.

CPENameOperatorVersion
tis:internet_firewall_toolkittis internet firewall toolkiteq2.1

CPE	Name	Operator	Version
tis:internet_firewall_toolkit	tis internet firewall toolkit	eq	2.1

References

archives.neohapsis.com/archives/bugtraq/2000-10/0376.html

exchange.xforce.ibmcloud.com/vulnerabilities/5420

7.9 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

14.2%

JSON