Lucene search

[email protected]CVE-2001-0886

HistoryJun 25, 2002 - 4:00 a.m.

CVE-2001-0886

2002-06-2504:00:00

[email protected]

web.nvd.nist.gov

cve-2001-0886

buffer overflow

glibc

glob function

denial of service

arbitrary code execution

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.3%

JSON

Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace “{” character.

Affected configurations

NVD

Node

debiandebian_linuxMatch2.1

redhatlinuxRange≤7.2

redhatlinuxMatch6.2

redhatlinuxMatch7.0

redhatlinuxMatch7.1

CPENameOperatorVersion
debian:debian_linuxdebian debian linuxeq2.1
redhat:linuxredhat linuxle7.2
redhat:linuxredhat linuxeq6.2
redhat:linuxredhat linuxeq7.0
redhat:linuxredhat linuxeq7.1

CPE	Name	Operator	Version
debian:debian_linux	debian debian linux	eq	2.1
redhat:linux	redhat linux	le	7.2
redhat:linux	redhat linux	eq	6.2
redhat:linux	redhat linux	eq	7.0
redhat:linux	redhat linux	eq	7.1

References

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000447

download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-037-01

sources.redhat.com/ml/bug-glibc/2001-11/msg00109.html

www.ciac.org/ciac/bulletins/m-029.shtml

www.debian.org/security/2002/dsa-103

www.linux-mandrake.com/en/security/2001/MDKSA-2001-095.php3

www.linuxsecurity.com/advisories/other_advisory-1752.html

www.redhat.com/support/errata/RHSA-2001-160.html

www.securityfocus.com/archive/1/245956

www.securityfocus.com/bid/3707

www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0112-008

exchange.xforce.ibmcloud.com/vulnerabilities/7705

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.3%

JSON

Related for CVE-2001-0886

openvas2 nvd1 suse1 cvelist1 nessus2