Lucene search

[email protected]CVE-2001-1206

HistoryMar 15, 2002 - 5:00 a.m.

CVE-2001-1206

2002-03-1505:00:00

[email protected]

web.nvd.nist.gov

cve-2001-1206

matrix cgi vault last lines 2.0

remote command execution

arbitrary commands

shell metacharacters

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.2%

JSON

Matrix CGI vault Last Lines 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the $error_log variable.

Affected configurations

NVD

Node

matrixs_cgi_vaultlast_linesMatch2.0

CPENameOperatorVersion
matrixs_cgi_vault:last_linesmatrixs cgi vault last lineseq2.0

CPE	Name	Operator	Version
matrixs_cgi_vault:last_lines	matrixs cgi vault last lines	eq	2.0

References

marc.info/?l=bugtraq&m=100975978324723&w=2

www.securityfocus.com/bid/3755

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.2%

JSON

Related for CVE-2001-1206

cvelist1 nvd1