mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
142 lines
4.8 KiB
JSON
142 lines
4.8 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2001-0949",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Buffer overflows in forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 allows remote attackers to execute arbitrary code via long arguments to the parameters (1) Mode, (2) Certificate_File, (3) useExpiredCRLs, (4) listenLength, (5) maxThread, (6) maxConnPerSite, (7) maxMsgLen, (8) exitTime, (9) blockTime, (10) nextUpdatePeriod, (11) buildLocal, (12) maxOCSPValidityPeriod, (13) extension, and (14) a particular combination of parameters associated with private key generation that form a string of a certain length."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "3634",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3634"
|
|
},
|
|
{
|
|
"name": "3631",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3631"
|
|
},
|
|
{
|
|
"name": "3635",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3635"
|
|
},
|
|
{
|
|
"name": "3628",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3628"
|
|
},
|
|
{
|
|
"name": "3625",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3625"
|
|
},
|
|
{
|
|
"name": "3636",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3636"
|
|
},
|
|
{
|
|
"refsource": "BUGTRAQ",
|
|
"name": "20011204 NMRC Advisory - Multiple Valicert Problems",
|
|
"url": "http://marc.info/?l=bugtraq&m=100749428517090&w=2"
|
|
},
|
|
{
|
|
"name": "3633",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3633"
|
|
},
|
|
{
|
|
"name": "3630",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3630"
|
|
},
|
|
{
|
|
"name": "http://www.valicert.com/support/security_advisory_eva.html",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://www.valicert.com/support/security_advisory_eva.html"
|
|
},
|
|
{
|
|
"name": "3629",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3629"
|
|
},
|
|
{
|
|
"name": "3621",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3621"
|
|
},
|
|
{
|
|
"name": "3622",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3622"
|
|
},
|
|
{
|
|
"name": "3627",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3627"
|
|
},
|
|
{
|
|
"name": "3632",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3632"
|
|
},
|
|
{
|
|
"name": "3624",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/3624"
|
|
},
|
|
{
|
|
"name": "eva-forms-bo(7652)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7652"
|
|
}
|
|
]
|
|
}
|
|
} |