7.5
CVE-2000-1211
- EPSS 1.43%
- Veröffentlicht 16.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:23
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.43% | 0.695 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.iss.net/security_center/static/5824.php
http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-083.php3
http://www.osvdb.org/6282
http://www.redhat.com/support/errata/RHSA-2000-125.html
http://www.zope.org/Products/Zope/Hotfix_2000-12-08/security_alert