VAR-200106-0098
Vulnerability from variot - Updated: 2023-12-18 12:59Buffer overflow in Voyager web administration server for Nokia IP440 allows local users to cause a denial of service, and possibly execute arbitrary commands, via a long URL. A vulnerability exists in Nokia's IP440 integrated Firewall-1/IDS. If a URL is sent to the device's administration interface which contains a large number of characters it can overflow the relevant buffer and create a segmentation fault. As with any buffer overflow, this has the potential to allow arbitrary code execution, but this result has not been reported in this case. Note that in order for this vulnerability to be exploited, the attacker must have been previously authenticated by the target system. Regardless, this vulnerability will permit an attacker to carry out a denial of services on the affected host
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200106-0098",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": null,
"scope": null,
"trust": 1.6,
"vendor": "sgi",
"version": null
},
{
"model": "ip440 firewall vpn appliance",
"scope": "eq",
"trust": 1.6,
"vendor": "nokia",
"version": "1.0"
},
{
"model": "ip440",
"scope": null,
"trust": 0.3,
"vendor": "nokia",
"version": null
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#20851"
},
{
"db": "BID",
"id": "2054"
},
{
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:nokia:ip440_firewall_vpn_appliance:1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2001-0299"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Reported to bugtraq by K2 \u003c ktwo@ktwo.ca \u003e on Mon Nov 27 2000.",
"sources": [
{
"db": "BID",
"id": "2054"
}
],
"trust": 0.3
},
"cve": "CVE-2001-0299",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-3121",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2001-0299",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#20851",
"trust": 0.8,
"value": "14.06"
},
{
"author": "CNNVD",
"id": "CNNVD-200106-022",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-3121",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#20851"
},
{
"db": "VULHUB",
"id": "VHN-3121"
},
{
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Buffer overflow in Voyager web administration server for Nokia IP440 allows local users to cause a denial of service, and possibly execute arbitrary commands, via a long URL. A vulnerability exists in Nokia\u0027s IP440 integrated Firewall-1/IDS. \nIf a URL is sent to the device\u0027s administration interface which contains a large number of characters it can overflow the relevant buffer and create a segmentation fault. As with any buffer overflow, this has the potential to allow arbitrary code execution, but this result has not been reported in this case. \nNote that in order for this vulnerability to be exploited, the attacker must have been previously authenticated by the target system. \nRegardless, this vulnerability will permit an attacker to carry out a denial of services on the affected host",
"sources": [
{
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"db": "BID",
"id": "2054"
},
{
"db": "VULHUB",
"id": "VHN-3121"
}
],
"trust": 1.26
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "BID",
"id": "2054",
"trust": 2.0
},
{
"db": "NVD",
"id": "CVE-2001-0299",
"trust": 1.7
},
{
"db": "OSVDB",
"id": "6020",
"trust": 1.7
},
{
"db": "XF",
"id": "440",
"trust": 1.4
},
{
"db": "CERT/CC",
"id": "VU#20851",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-200106-022",
"trust": 0.7
},
{
"db": "XF",
"id": "5640",
"trust": 0.6
},
{
"db": "BUGTRAQ",
"id": "20001127 NOKIA FIREWALLS",
"trust": 0.6
},
{
"db": "BUGTRAQ",
"id": "20001205 NOKIA FIREWALLS - RESPONSE FROM NOKIA",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-3121",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#20851"
},
{
"db": "VULHUB",
"id": "VHN-3121"
},
{
"db": "BID",
"id": "2054"
},
{
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
]
},
"id": "VAR-200106-0098",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-3121"
}
],
"trust": 0.01
},
"last_update_date": "2023-12-18T12:59:49.876000Z",
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2001-0299"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/2054"
},
{
"trust": 1.7,
"url": "http://www.osvdb.org/6020"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=97535202912588\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=97603879517777\u0026w=2"
},
{
"trust": 1.1,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5640"
},
{
"trust": 0.8,
"url": "ftp://sgigate.sgi.com/security/19970505-01-a"
},
{
"trust": 0.8,
"url": "ftp://sgigate.sgi.com/security/19970505-02-px"
},
{
"trust": 0.8,
"url": "ftp://ftp.auscert.org.au/pub/auscert/advisory/aa-97.19.irix.df.buffer.overflow.vul"
},
{
"trust": 0.8,
"url": "ftp://ftp.auscert.org.au/pub/auscert/tools/overflow_wrapper/overflow_wrapper.c"
},
{
"trust": 0.8,
"url": "http://xforce.iss.net/static/440.php"
},
{
"trust": 0.6,
"url": "http://marc.theaimsgroup.com/?l=bugtraq\u0026m=97603879517777\u0026w=2"
},
{
"trust": 0.6,
"url": "http://marc.theaimsgroup.com/?l=bugtraq\u0026m=97535202912588\u0026w=2"
},
{
"trust": 0.6,
"url": "http://xforce.iss.net/xforce/xfdb/5640"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#20851"
},
{
"db": "VULHUB",
"id": "VHN-3121"
},
{
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CERT/CC",
"id": "VU#20851"
},
{
"db": "VULHUB",
"id": "VHN-3121"
},
{
"db": "BID",
"id": "2054"
},
{
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2000-12-15T00:00:00",
"db": "CERT/CC",
"id": "VU#20851"
},
{
"date": "2001-06-02T00:00:00",
"db": "VULHUB",
"id": "VHN-3121"
},
{
"date": "2000-12-04T00:00:00",
"db": "BID",
"id": "2054"
},
{
"date": "2001-06-02T04:00:00",
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"date": "2001-06-02T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2000-12-15T00:00:00",
"db": "CERT/CC",
"id": "VU#20851"
},
{
"date": "2017-10-10T00:00:00",
"db": "VULHUB",
"id": "VHN-3121"
},
{
"date": "2000-12-04T00:00:00",
"db": "BID",
"id": "2054"
},
{
"date": "2017-10-10T01:29:40.343000",
"db": "NVD",
"id": "CVE-2001-0299"
},
{
"date": "2005-05-02T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "SGI IRIX df buffer overflow in directory argument",
"sources": [
{
"db": "CERT/CC",
"id": "VU#20851"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer overflow",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200106-022"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…