Lucene search

[email protected]CVE-2001-0207

HistorySep 18, 2001 - 4:00 a.m.

CVE-2001-0207

2001-09-1804:00:00

[email protected]

web.nvd.nist.gov

cve-2001-0207

buffer overflow

bing

remote attack

dns lookup

gethostbyaddr function

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.3%

JSON

Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, which is copied to a small buffer after a reverse DNS lookup using the gethostbyaddr function.

Affected configurations

NVD

Node

pierre_beyssacbingRange≤1.0.4

CPENameOperatorVersion
pierre_beyssac:bingpierre beyssac bingle1.0.4

CPE	Name	Operator	Version
pierre_beyssac:bing	pierre beyssac bing	le	1.0.4

References

archives.neohapsis.com/archives/bugtraq/2001-01/0330.html

www.securityfocus.com/bid/2279

exchange.xforce.ibmcloud.com/vulnerabilities/6036

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.3%

JSON

Related for CVE-2001-0207

cvelist1 nvd1