Lucene search

[email protected]CVE-2001-0276

HistoryMay 03, 2001 - 4:00 a.m.

CVE-2001-0276

2001-05-0304:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-0276

badblue 1.02.07

ext.dll

server security

remote attack

7.3 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.009 Low

EPSS

Percentile

83.0%

JSON

ext.dll in BadBlue 1.02.07 Personal Edition web server allows remote attackers to determine the physical path of the server by directly calling ext.dll without any arguments, which produces an error message that contains the path.

CPENameOperatorVersion
working_resources_inc.:badblueworking resources inc. badblueeq1.2.7

CPE	Name	Operator	Version
working_resources_inc.:badblue	working resources inc. badblue	eq	1.2.7

References

marc.info/?l=bugtraq&m=98263019502565&w=2

www.badblue.com/p010219.htm

www.securityfocus.com/bid/2390

exchange.xforce.ibmcloud.com/vulnerabilities/6130

7.3 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.009 Low

EPSS

Percentile

83.0%

JSON

Related for CVE-2001-0276

cvelist1