CVE-2001-0398

Exploit

EPSS 1.05%
Veröffentlicht 18.06.2001 04:00:00
Zuletzt bearbeitet 16.04.2026 00:27:16
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment and execute arbitrary commands via an attachment whose file name contains many spaces, which also causes the BAT!  to misrepresent the attachment's type with a different icon.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ritlabs ≫ The Bat Version1.0_build1336

Ritlabs ≫ The Bat Version1.0_build1349

Ritlabs ≫ The Bat Version1.1

Ritlabs ≫ The Bat Version1.011

Ritlabs ≫ The Bat Version1.14

Ritlabs ≫ The Bat Version1.15

Ritlabs ≫ The Bat Version1.015

Ritlabs ≫ The Bat Version1.17

Ritlabs ≫ The Bat Version1.18

Ritlabs ≫ The Bat Version1.19

Ritlabs ≫ The Bat Version1.21

Ritlabs ≫ The Bat Version1.22

Ritlabs ≫ The Bat Version1.028

Ritlabs ≫ The Bat Version1.029

Ritlabs ≫ The Bat Version1.31

Ritlabs ≫ The Bat Version1.031

Ritlabs ≫ The Bat Version1.32

Ritlabs ≫ The Bat Version1.032

Ritlabs ≫ The Bat Version1.33

Ritlabs ≫ The Bat Version1.34

Ritlabs ≫ The Bat Version1.035

Ritlabs ≫ The Bat Version1.35

Ritlabs ≫ The Bat Version1.036

Ritlabs ≫ The Bat Version1.36

Ritlabs ≫ The Bat Version1.037

Ritlabs ≫ The Bat Version1.39

Ritlabs ≫ The Bat Version1.039

Ritlabs ≫ The Bat Version1.041

Ritlabs ≫ The Bat Version1.41

Ritlabs ≫ The Bat Version1.42

Ritlabs ≫ The Bat Version1.42f

Ritlabs ≫ The Bat Version1.043

Ritlabs ≫ The Bat Version1.43

Ritlabs ≫ The Bat Version1.44

Ritlabs ≫ The Bat Version1.45

Ritlabs ≫ The Bat Version1.46

Ritlabs ≫ The Bat Version1.47

Ritlabs ≫ The Bat Version1.48

Ritlabs ≫ The Bat Version1.49

Ritlabs ≫ The Bat Version1.101

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.05%	0.755

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://archives.neohapsis.com/archives/bugtraq/2001-04/0013.html

Vendor Advisory

http://www.securityfocus.com/bid/2530

Patch

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2001-0398

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0398

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0398

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2001-0398