5
CVE-2000-0911
- EPSS 1.86%
- Veröffentlicht 19.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:44
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
IMP 2.2 and earlier allows attackers to read and delete arbitrary files by modifying the attachment_name hidden form variable, which causes IMP to send the file to the attacker as an attachment.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.86% | 0.764 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://www.securityfocus.com/archive/1/82088
http://www.securityfocus.com/bid/1679
https://exchange.xforce.ibmcloud.com/vulnerabilities/5227