Lucene search

[email protected]NVD:CVE-2000-0769

HistoryOct 20, 2000 - 4:00 a.m.

CVE-2000-0769

2000-10-2004:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.004

Percentile

72.6%

JSON

O’Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe.

Affected configurations

Nvd

Node

oreillywebsite_proRange≤2.3.7

VendorProductVersionCPE
oreillywebsite_pro*cpe:2.3:a:oreilly:website_pro:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oreilly	website_pro	*	cpe:2.3:a:oreilly:website_pro::::::::

References

marc.info/?l=bugtraq&m=96715834610888&w=2

www.securityfocus.com/bid/1611

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.004

Percentile

72.6%

JSON

Related for NVD:CVE-2000-0769

cve1 cvelist1