{ "id": "CVE-2000-0536", "sourceIdentifier": "cve@mitre.org", "published": "2000-06-04T04:00:00.000", "lastModified": "2017-10-10T01:29:11.107", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "xinetd 2.1.8.x does not properly restrict connections if hostnames are used for access control and the connecting host does not have a reverse DNS entry." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 7.5 }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.87:*:*:*:*:*:*:*", "matchCriteriaId": "B53D978C-62C3-4C46-8ACA-5D06899A6D76" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.88:*:*:*:*:*:*:*", "matchCriteriaId": "3AC105CC-6E52-475A-95E4-591A66CE2259" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.88_pre1:*:*:*:*:*:*:*", "matchCriteriaId": "5C958EBF-21EF-464A-B29B-A0CA65845A12" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.88_pre2:*:*:*:*:*:*:*", "matchCriteriaId": "2E7333CF-980A-4F17-A833-521792072807" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.89_pre1:*:*:*:*:*:*:*", "matchCriteriaId": "29B5FEFE-773A-45EE-BD3F-E843ECF16205" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.89_pre2:*:*:*:*:*:*:*", "matchCriteriaId": "EEC5DB98-DF04-4EAC-B0AE-C64F31B0E44E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.89_pre3:*:*:*:*:*:*:*", "matchCriteriaId": "D88CE5BA-89B6-4205-A4EA-D69CFA1796E6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.89_pre4:*:*:*:*:*:*:*", "matchCriteriaId": "99C84214-B2AE-484E-B166-F93CAA07C83C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:xinetd:xinetd:2.1.89_pre5:*:*:*:*:*:*:*", "matchCriteriaId": "E0F67EC0-9AD8-407A-ACB7-AE1CF6F93D32" } ] } ] } ], "references": [ { "url": "http://www.debian.org/security/2000/20000619", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/bid/1381", "source": "cve@mitre.org", "tags": [ "Exploit", "Patch", "Vendor Advisory" ] }, { "url": "http://www.synack.net/xinetd/", "source": "cve@mitre.org", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/4986", "source": "cve@mitre.org" } ] }