CVE-2000-0696

The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://archives.neohapsis.com/archives/sun/2000-q3/0001.html	Patch Vendor Advisory
http://www.securityfocus.com/bid/1554	Exploit Patch Vendor Advisory
http://seclists.org/bugtraq/2000/Aug/0105.html
http://www.s21sec.com/en/avisos/s21sec-004-en.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/5069

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sun:solaris_answerbook2:1.4.1:::::::*
	cpe:2.3:a:sun:solaris_answerbook2:1.4.2:::::::*
	cpe:2.3:a:sun:solaris_answerbook2:1.3:::::::*
	cpe:2.3:a:sun:solaris_answerbook2:1.4:::::::*

Information

Published : 2000-10-19 21:00

Updated : 2017-12-18 18:29

NVD link : CVE-2000-0696

Mitre link : CVE-2000-0696

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

sun

solaris_answerbook2

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://archives.neohapsis.com/archives/sun/2000-q3/0001.html", "name": "00196", "tags": ["Patch", "Vendor Advisory"], "refsource": "SUN"}, {"url": "http://www.securityfocus.com/bid/1554", "name": "1554", "tags": ["Exploit", "Patch", "Vendor Advisory"], "refsource": "BID"}, {"url": "http://seclists.org/bugtraq/2000/Aug/0105.html", "name": "20000807 Vulnerabilities in Sun Solaris AnswerBook2 dwhttpd server", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.s21sec.com/en/avisos/s21sec-004-en.txt", "name": "http://www.s21sec.com/en/avisos/s21sec-004-en.txt", "tags": [], "refsource": "MISC"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5069", "name": "solaris-answerbook2-admin-interface(5069)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2000-0696", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}}, "publishedDate": "2000-10-20T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:sun:solaris_answerbook2:1.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sun:solaris_answerbook2:1.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sun:solaris_answerbook2:1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sun:solaris_answerbook2:1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-12-19T02:29Z"}