Lucene search

[email protected]CVE-2001-1320

HistoryMay 03, 2002 - 4:00 a.m.

CVE-2001-1320

2002-05-0304:00:00

[email protected]

web.nvd.nist.gov

cve-2001-1320

pgp keyserver 7.0

denial of service

arbitrary code execution

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.437 Medium

EPSS

Percentile

97.4%

JSON

Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via exceptional BER encodings (possibly buffer overflows), as demonstrated by the PROTOS LDAPv3 test suite.

Affected configurations

NVD

Node

pgpkeyserverMatch7.0

CPENameOperatorVersion
pgp:keyserverpgp keyservereq7.0

CPE	Name	Operator	Version
pgp:keyserver	pgp keyserver	eq	7.0

References

ciac.llnl.gov/ciac/bulletins/l-116.shtml

www.cert.org/advisories/CA-2001-18.html

www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/

www.kb.cert.org/vuls/id/765256

www.kb.cert.org/vuls/id/JPLA-4WESNK

www.securityfocus.com/bid/3046

exchange.xforce.ibmcloud.com/vulnerabilities/6900

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.437 Medium

EPSS

Percentile

97.4%

JSON

Related for CVE-2001-1320

cvelist1 packetstorm1 nvd1 cert1