[email protected]CVE-2001-0775

HistoryOct 18, 2001 - 4:00 a.m.

CVE-2001-0775

2001-10-1804:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2001-0775

buffer overflow

xloadimage 4.1

linux

faces format image

code execution

remote attackers

arbitrary code.

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.275 Low

EPSS

Percentile

96.8%

JSON

Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux allows remote attackers to execute arbitrary code via a FACES format image containing a long (1) Firstname or (2) Lastname field.

CPENameOperatorVersion
xloadimage:xloadimagexloadimageeq4.1
xli:xlixlieq1.17
xli:xlixlieq1.16

CPE	Name	Operator	Version
xloadimage:xloadimage	xloadimage	eq	4.1
xli:xli	xli	eq	1.17
xli:xli	xli	eq	1.16

References

www.debian.org/security/2001/dsa-069

www.debian.org/security/2005/dsa-695

www.gentoo.org/security/en/glsa/glsa-200503-05.xml

www.iss.net/security_center/static/6821.php

www.novell.com/linux/security/advisories/2001_024_xli_txt.html

www.redhat.com/support/errata/RHSA-2001-088.html

www.securityfocus.com/archive/1/195823

www.securityfocus.com/bid/3006

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.275 Low

EPSS

Percentile

96.8%

JSON

Related for CVE-2001-0775

securityvulns2 openvas8 nessus6 cvelist1 ubuntucve1 freebsd1 debiancve1 debian2 osv1 gentoo1