CVE-2001-0797

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2001-0797
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://xforce.iss.net/alerts/advise105.php Patch Vendor Advisory
http://www.securityfocus.com/archive/1/246487 Vendor Advisory
http://www.cert.org/advisories/CA-2001-34.html Patch Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/3681 Exploit Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/569272 US Government Resource
ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.40/CSSA-2001-SCO.40.txt
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/213
http://www-1.ibm.com/support/search.wss?rs=0&q=IY26221&apar=only
ftp://patches.sgi.com/support/free/security/advisories/20011201-01-I
http://marc.info/?l=bugtraq&m=100844757228307&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2025
https://exchange.xforce.ibmcloud.com/vulnerabilities/7284
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:sgi:irix:3.2:*:*:*:*:*:*:*
cpe:2.3:o:sgi:irix:3.3.2:*:*:*:*:*:*:*
cpe:2.3:o:sgi:irix:3.3.3:*:*:*:*:*:*:*
cpe:2.3:o:sgi:irix:3.3:*:*:*:*:*:*:*
cpe:2.3:o:sgi:irix:3.3.1:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3.1:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0.5:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0.6:*:*:*:*:*:*:*
cpe:2.3:o:sun:solaris:2.4:*:x86:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.5:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*
cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.0.4:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.3:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.00:*:*:*:*:*:*:*
cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:*
cpe:2.3:o:sun:solaris:2.5:*:x86:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0.2:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.24:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3.3:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.4:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0.3:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0.6a:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:5.1:*:*:*:*:*:*:*
cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:5.0.4:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.1:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.2:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*
cpe:2.3:o:sun:solaris:2.5.1:*:ppc:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.0:*:*:*:*:*:*:*
cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
Information

Published : 2001-12-11 21:00

Updated : 2018-10-30 09:26

NVD link : CVE-2001-0797

Mitre link : CVE-2001-0797

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

sco

  • openserver

sun

  • solaris
  • sunos

ibm

  • aix

sgi

  • irix

hp

  • hp-ux