Lucene search

[email protected]CVE-2001-0464

HistoryJul 02, 2001 - 4:00 a.m.

CVE-2001-0464

2001-07-0204:00:00

[email protected]

web.nvd.nist.gov

cve-2001-0464

buffer overflow

cyberscheduler

websync.exe

remote attack

arbitrary commands

timezone parameter

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.8%

JSON

Buffer overflow in websync.exe in Cyberscheduler allows remote attackers to execute arbitrary commands via a long tzs (timezone) parameter.

Affected configurations

NVD

Node

crosswindcyberschedulerMatch2.1

CPENameOperatorVersion
crosswind:cyberschedulercrosswind cyberschedulereq2.1

CPE	Name	Operator	Version
crosswind:cyberscheduler	crosswind cyberscheduler	eq	2.1

References

marc.info/?l=bugtraq&m=98761402029302&w=2

www.securityfocus.com/bid/2628

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.8%

JSON

Related for CVE-2001-0464

cvelist1 nvd1