CVE-2001-0825
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/12/2001
Last modified:
03/04/2025
Description
Buffer overflow in internal string handling routines of xinetd before 2.1.8.8 allows remote attackers to execute arbitrary commands via a length argument of zero or less, which disables the length check.
Impact
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:xinetd:xinetd:*:*:*:*:*:*:*:* | 2.3.1 (including) | |
| cpe:2.3:a:xinetd:xinetd:2.1.8.8:*:*:*:*:*:*:* | ||
| cpe:2.3:a:xinetd:xinetd:2.1.8.9:*:*:*:*:*:*:* | ||
| cpe:2.3:a:xinetd:xinetd:2.3.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000406
- http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-029-01
- http://www.redhat.com/support/errata/RHSA-2001-092.html
- http://www.securityfocus.com/bid/2971
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6804
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000406
- http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-029-01
- http://www.redhat.com/support/errata/RHSA-2001-092.html
- http://www.securityfocus.com/bid/2971
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6804