7.5

CVE-2001-1389

Multiple vulnerabilities in xinetd 2.3.0 and earlier, and additional variants until 2.3.3, may allow remote attackers to cause a denial of service or execute arbitrary code, primarily via buffer overflows or improper NULL termination.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
XinetdXinetd Version2.1.8.8
XinetdXinetd Version2.1.8.8_pre3
XinetdXinetd Version2.1.8.9_pre1
XinetdXinetd Version2.1.8.9_pre2
XinetdXinetd Version2.1.8.9_pre3
XinetdXinetd Version2.1.8.9_pre5
XinetdXinetd Version2.1.8.9_pre7
XinetdXinetd Version2.1.8.9_pre8
XinetdXinetd Version2.1.8.9_pre9
XinetdXinetd Version2.1.8.9_pre10
XinetdXinetd Version2.1.8.9_pre11
XinetdXinetd Version2.1.8.9_pre12
XinetdXinetd Version2.1.8.9_pre13
XinetdXinetd Version2.1.8.9_pre14
XinetdXinetd Version2.1.8.9_pre15
XinetdXinetd Version2.3.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.34% 0.871
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-033-01
http://marc.info/?l=bugtraq&m=99913751525583&w=2
http://rhn.redhat.com/errata/RHSA-2001-109.html
Patch
Vendor Advisory
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-076.php3
Vendor Advisory
http://www.securityfocus.com/bid/3257