Lucene search

MitreCVE-2000-0611

HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0611

2000-10-1304:00:00

mitre

web.nvd.nist.gov

netwin dmailweb

pop servers

authentication bypass

denial of service

cve-2000-0611

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.2

Confidence

High

EPSS

0.002

Percentile

61.2%

JSON

The default configuration of NetWin dMailWeb and cwMail trusts all POP servers, which allows attackers to bypass normal authentication and cause a denial of service.

Affected configurations

Nvd

Node

netwincwmailMatch2.6g

netwindmailwebMatch2.6g

VendorProductVersionCPE
netwincwmail2.6gcpe:2.3:a:netwin:cwmail:2.6g:*:*:*:*:*:*:*
netwindmailweb2.6gcpe:2.3:a:netwin:dmailweb:2.6g:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
netwin	cwmail	2.6g	cpe:2.3:a:netwin:cwmail:2.6g:::::::*
netwin	dmailweb	2.6g	cpe:2.3:a:netwin:dmailweb:2.6g:::::::*

References

archives.neohapsis.com/archives/bugtraq/2000-06/0243.html

www.securityfocus.com/bid/1391

exchange.xforce.ibmcloud.com/vulnerabilities/4771

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.2

Confidence

High

EPSS

0.002

Percentile

61.2%

JSON

Related for CVE-2000-0611