CVE-2000-0639

2000-10-1304:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.7%

JSON

The default configuration of Big Brother 1.4h2 and earlier does not include proper access restrictions, which allows remote attackers to execute arbitrary commands by using bbd to upload a file whose extension will cause it to be executed as a CGI script by the web server.

References

archives.neohapsis.com/archives/bugtraq/2000-07/0171.html

www.osvdb.org/1472

www.securityfocus.com/bid/1494

exchange.xforce.ibmcloud.com/vulnerabilities/5103