Lucene search

[email protected]CVE-2001-1456

HistoryApr 21, 2005 - 4:00 a.m.

CVE-2001-1456

2005-04-2104:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2001-1456

buffer overflow

gauntlet firewall

remote attack

arbitrary code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.7%

JSON

Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.

Affected configurations

NVD

Node

mcafeewebshield_smtpMatch4.0

mcafeewebshield_smtpMatch4.1

network_associatesgauntlet_firewallMatch4.2

network_associatesgauntlet_firewallMatchunix_5.0

network_associatesgauntlet_firewallMatchunix_5.5

network_associatesgauntlet_firewallMatchunix_6.0

pgpe-ppliance_300Match1.0

pgpe-ppliance_300Match1.5

pgpe-ppliance_300Match2.0

sgiirixMatch6.2

sgiirixMatch6.3

sgiirixMatch6.4

sgiirixMatch6.5

Node

network_associatesmcafee_e-pplianceMatch100_series

network_associatesmcafee_e-pplianceMatch120_series

CPENameOperatorVersion
mcafee:webshield_smtpmcafee webshield smtpeq4.0
mcafee:webshield_smtpmcafee webshield smtpeq4.1
network_associates:gauntlet_firewallnetwork associates gauntlet firewalleq4.2
network_associates:gauntlet_firewallnetwork associates gauntlet firewallequnix_5.0
network_associates:gauntlet_firewallnetwork associates gauntlet firewallequnix_5.5
network_associates:gauntlet_firewallnetwork associates gauntlet firewallequnix_6.0
pgp:e-ppliance_300pgp e-ppliance 300eq1.0
pgp:e-ppliance_300pgp e-ppliance 300eq1.5
pgp:e-ppliance_300pgp e-ppliance 300eq2.0
sgi:irixsgi irixeq6.2

CPE	Name	Operator	Version
mcafee:webshield_smtp	mcafee webshield smtp	eq	4.0
mcafee:webshield_smtp	mcafee webshield smtp	eq	4.1
network_associates:gauntlet_firewall	network associates gauntlet firewall	eq	4.2
network_associates:gauntlet_firewall	network associates gauntlet firewall	eq	unix_5.0
network_associates:gauntlet_firewall	network associates gauntlet firewall	eq	unix_5.5
network_associates:gauntlet_firewall	network associates gauntlet firewall	eq	unix_6.0
pgp:e-ppliance_300	pgp e-ppliance 300	eq	1.0
pgp:e-ppliance_300	pgp e-ppliance 300	eq	1.5
pgp:e-ppliance_300	pgp e-ppliance 300	eq	2.0
sgi:irix	sgi irix	eq	6.2

Rows per page:

1-10 of 131

References

ftp://patches.sgi.com/support/free/security/advisories/20011104-01-I

www.cert.org/advisories/CA-2001-25.html

www.kb.cert.org/vuls/id/206723

www.securityfocus.com/bid/3290

exchange.xforce.ibmcloud.com/vulnerabilities/7088

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.7%

JSON

Related for CVE-2001-1456

nvd1 cvelist1