Lucene search

[email protected]CVE-2001-0421

HistoryJul 02, 2001 - 4:00 a.m.

CVE-2001-0421

2001-07-0204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

solaris 8

ftp server

cve-2001-0421

vulnerability

information security

6.7 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.032 Low

EPSS

Percentile

91.2%

JSON

FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition.

CPENameOperatorVersion
sun:solarissun solariseq2.6
sun:sunossun sunosle5.9

CPE	Name	Operator	Version
sun:solaris	sun solaris	eq	2.6
sun:sunos	sun sunos	le	5.9

References

www.securityfocus.com/archive/1/177200

www.securityfocus.com/bid/2601

6.7 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.032 Low

EPSS

Percentile

91.2%

JSON

Related for CVE-2001-0421

checkpoint_advisories1 cvelist1