Lucene search

[email protected]CVE-2001-0271

HistoryMay 03, 2001 - 4:00 a.m.

CVE-2001-0271

2001-05-0304:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

mailnews.cgi 1.3

cve-2001-0271

remote attack

arbitrary commands

shell metacharacters

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.033 Low

EPSS

Percentile

91.1%

JSON

mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters.

CPENameOperatorVersion
mailnews.cgi:mailnews.cgimailnews.cgile1.3

CPE	Name	Operator	Version
mailnews.cgi:mailnews.cgi	mailnews.cgi	le	1.3

References

archives.neohapsis.com/archives/bugtraq/2001-02/0347.html

www.securityfocus.com/bid/2391

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.033 Low

EPSS

Percentile

91.1%

JSON

Related for CVE-2001-0271

nessus1