Lucene search

[email protected]CVE-2001-1067

HistoryMar 09, 2002 - 5:00 a.m.

CVE-2001-1067

2002-03-0905:00:00

[email protected]

web.nvd.nist.gov

cve-2001-1067

aolserver 3.0

buffer overflow

dos

remote attack

arbitrary code execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.4%

JSON

Buffer overflow in AOLserver 3.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via an HTTP request with a long Authorization header.

Affected configurations

NVD

Node

aolaol_serverMatch3.0

aolaol_serverMatch3.2

CPENameOperatorVersion
aol:aol_serveraol aol servereq3.0
aol:aol_serveraol aol servereq3.2

CPE	Name	Operator	Version
aol:aol_server	aol aol server	eq	3.0
aol:aol_server	aol aol server	eq	3.2

References

archives.neohapsis.com/archives/bugtraq/2001-08/0325.html

www.securityfocus.com/archive/1/213041

www.securityfocus.com/bid/3230

exchange.xforce.ibmcloud.com/vulnerabilities/7030

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.4%

JSON

Related for CVE-2001-1067

nvd1 cvelist1 cert1