Lucene search

MitreCVE-2000-0322

HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0322

2000-10-1304:00:00

mitre

web.nvd.nist.gov

red hat

piranha virtual server

passwd.php3

shell metacharacters

cve-2000-0322

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

High

EPSS

0.237

Percentile

96.6%

JSON

The passwd.php3 CGI script in the Red Hat Piranha Virtual Server Package allows local users to execute arbitrary commands via shell metacharacters.

Affected configurations

Nvd

Node

redhatlinuxMatch6.2alpha

redhatlinuxMatch6.2i386

redhatlinuxMatch6.2sparc

VendorProductVersionCPE
redhatlinux6.2cpe:2.3:o:redhat:linux:6.2:*:alpha:*:*:*:*:*
redhatlinux6.2cpe:2.3:o:redhat:linux:6.2:*:i386:*:*:*:*:*
redhatlinux6.2cpe:2.3:o:redhat:linux:6.2:*:sparc:*:*:*:*:*

Vendor	Product	Version	CPE
redhat	linux	6.2	cpe:2.3:o:redhat:linux:6.2::alpha:::::
redhat	linux	6.2	cpe:2.3:o:redhat:linux:6.2::i386:::::
redhat	linux	6.2	cpe:2.3:o:redhat:linux:6.2::sparc:::::

References

www.redhat.com/support/errata/RHSA-2000-014.html

www.securityfocus.com/bid/1149

www.securityfocus.com/templates/archive.pike?list=1&msg=Enip.BSO.23.0004241601140.28851-100000%40www.whitehats.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

High

EPSS

0.237

Percentile

96.6%

JSON

Related for CVE-2000-0322