Lucene search

[email protected]CVE-2001-1160

HistoryJun 18, 2001 - 4:00 a.m.

CVE-2001-1160

2001-06-1804:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-1160

microburst technologies

udirectory 2.0

remote attackers

command execution

8.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.022 Low

EPSS

Percentile

89.4%

JSON

udirectory.pl in Microburst Technologies uDirectory 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the category_file field.

CPENameOperatorVersion
microburst:udirectorymicroburst udirectoryeq2.0

CPE	Name	Operator	Version
microburst:udirectory	microburst udirectory	eq	2.0

References

www.securityfocus.com/archive/1/191829

www.securityfocus.com/bid/2884

exchange.xforce.ibmcloud.com/vulnerabilities/6706

8.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.022 Low

EPSS

Percentile

89.4%

JSON