CVE-2000-0751
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
94.7%
mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| netbsd | netbsd | 1.4.1 | cpe:2.3:o:netbsd:netbsd:1.4.1:*:*:*:*:*:*:* |
| netbsd | netbsd | 1.4.2 | cpe:2.3:o:netbsd:netbsd:1.4.2:*:*:*:*:*:*:* |
| openbsd | openbsd | 2.4 | cpe:2.3:o:openbsd:openbsd:2.4:*:*:*:*:*:*:* |
| openbsd | openbsd | 2.5 | cpe:2.3:o:openbsd:openbsd:2.5:*:*:*:*:*:*:* |
| openbsd | openbsd | 2.6 | cpe:2.3:o:openbsd:openbsd:2.6:*:*:*:*:*:*:* |
| openbsd | openbsd | 2.7 | cpe:2.3:o:openbsd:openbsd:2.7:*:*:*:*:*:*:* |
| redhat | linux | 6.0 | cpe:2.3:o:redhat:linux:6.0:*:*:*:*:*:*:* |
| redhat | linux | 6.1 | cpe:2.3:o:redhat:linux:6.1:*:*:*:*:*:*:* |
| redhat | linux | 6.2 | cpe:2.3:o:redhat:linux:6.2:*:*:*:*:*:*:* |
References
archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
archives.neohapsis.com/archives/freebsd/2000-08/0336.html
cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7&r2=1.8&f=h
www.openbsd.org/errata.html#mopd
www.redhat.com/support/errata/RHSA-2000-050.html
www.securityfocus.com/bid/1559
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
94.7%