Lucene search

[email protected]CVE-2001-0869

HistoryDec 21, 2001 - 5:00 a.m.

CVE-2001-0869

2001-12-2105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-0869

common.c

cyrus-sasl

format string vulnerability

remote attack.

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

84.8%

JSON

Format string vulnerability in the default logging callback function _sasl_syslog in common.c in Cyrus SASL library (cyrus-sasl) may allow remote attackers to execute arbitrary commands.

CPENameOperatorVersion
caldera:openlinux_workstationcaldera openlinux workstationeq3.1
redhat:linux_powertoolsredhat linux powertoolseq6.2
redhat:linuxredhat linuxeq7.0
redhat:linuxredhat linuxeq7.2
suse:suse_linuxsuse suse linuxeq7.2
caldera:openlinux_eservercaldera openlinux eservereq3.1
suse:suse_linuxsuse suse linuxeq7.0
suse:suse_linuxsuse suse linuxeq7.1
suse:suse_linuxsuse suse linuxeq7.3

CPE	Name	Operator	Version
caldera:openlinux_workstation	caldera openlinux workstation	eq	3.1
redhat:linux_powertools	redhat linux powertools	eq	6.2
redhat:linux	redhat linux	eq	7.0
redhat:linux	redhat linux	eq	7.2
suse:suse_linux	suse suse linux	eq	7.2
caldera:openlinux_eserver	caldera openlinux eserver	eq	3.1
suse:suse_linux	suse suse linux	eq	7.0
suse:suse_linux	suse suse linux	eq	7.1
suse:suse_linux	suse suse linux	eq	7.3

References

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:15.cyrus-sasl.asc

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000444

frontal2.mandriva.com/security/advisories?name=MDKSA-2002:018

lwn.net/alerts/SuSE/SuSE-SA%3A2001%3A042.php3

www.caldera.com/support/security/advisories/CSSA-2001-040.0.txt

www.redhat.com/support/errata/RHSA-2001-150.html

www.redhat.com/support/errata/RHSA-2001-151.html

www.securityfocus.com/bid/3498

exchange.xforce.ibmcloud.com/vulnerabilities/7443

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

84.8%

JSON

Related for CVE-2001-0869

nessus1 cvelist1 suse1 freebsd_advisory1