Lucene search

[email protected]CVE-2000-1177

HistoryJan 09, 2001 - 5:00 a.m.

CVE-2000-1177

2001-01-0905:00:00

[email protected]

web.nvd.nist.gov

big brother

cve-2000-1177

remote attack

user id exposure

file existence

histfile parameter

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.7%

JSON

bb-hist.sh, bb-histlog.sh, bb-hostsvc.sh, bb-rep.sh, bb-replog.sh, and bb-ack.sh in Big Brother (BB) before 1.5d3 allows remote attackers to determine the existence of files and user ID’s by specifying the target file in the HISTFILE parameter.

Affected configurations

NVD

Node

bb4big_brother_network_monitorRange≤1.5d2

CPENameOperatorVersion
bb4:big_brother_network_monitorbb4 big brother network monitorle1.5d2

CPE	Name	Operator	Version
bb4:big_brother_network_monitor	bb4 big brother network monitor	le	1.5d2

References

archives.neohapsis.com/archives/bugtraq/2000-11/0284.html

bb4.com/incident.nov21

www.securityfocus.com/bid/1971

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.7%

JSON

Related for CVE-2000-1177

cvelist1 nvd1