Vulnerability Name:
CVE-2000-0545 (CCN-1371)
Assigned:
1998-09-29
Published:
1998-09-29
Updated:
2008-09-10
Summary:
Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter.
CVSS v3 Severity:
5.9 Medium
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
)
Exploitability Metrics:
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
Low
Integrity (I):
Low
Availibility (A):
Low
CVSS v2 Severity:
4.6 Medium
(CVSS v2 Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
Partial
Integrity (I):
Partial
Availibility (A):
Partial
4.6 Medium
(CCN CVSS v2 Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
Partial
Integrity (I):
Partial
Availibility (A):
Partial
Vulnerability Type:
CWE-Other
Vulnerability Consequences:
Gain Privileges
References:
Source: CCN
Type: SGI Security Advisory 19980605-01-PX
IRIX Mail(1)/mailx(1) Security Issues
Source: BUGTRAQ
Type: Vendor Advisory
20000602 /usr/bin/Mail exploit for Slackware 7.0 (mail-slack.c)
Source: CCN
Type: BugTraq Mailing List, Fri Jun 02 2000 - 17:53:58 CDT
/usr/bin/Mail exploit for Slackware 7.0 (mail-slack.c)
Source: MITRE
Type: CNA
CVE-1999-0125
Source: MITRE
Type: CNA
CVE-2000-0545
Source: CCN
Type: CIAC Information Bulletin J-002
SGI IRIX Mail(1)/mailx(1) Security Vulnerabilities
Source: DEBIAN
Type: UNKNOWN
20000605 mailx: mail group exploit in mailx
Source: DEBIAN
Type: Debian Security Advisory 20000605
mailx: mail group exploit in mailx
Source: CCN
Type: OSVDB ID: 13690
Multiple Unix mailx mail -c Parameter Local Overflow
Source: CCN
Type: OSVDB ID: 991
Multiple Vendor mailx Local Overflow
Source: BID
Type: UNKNOWN
1305
Source: CCN
Type: BID-1305
BSD mailx 8.1.1-10 Buffer Overflow Vulnerability
Source: CCN
Type: BID-393
Multiple Vendor mailx Vulnerability
Source: XF
Type: UNKNOWN
sgi-mailx-bo(1371)
Vulnerable Configuration:
Configuration 1
:
cpe:/a:sgi:mailx:3:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:4:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:5:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:6.0.1:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:6.1:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:6.2:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:6.3:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:6.4:*:*:*:*:*:*:*
OR
cpe:/a:sgi:mailx:6.5:*:*:*:*:*:*:*
Configuration CCN 1
:
cpe:/o:sgi:irix:5.2:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:5.3:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.0.1:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.1:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.2:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.3:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.4:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.5:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.0:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:6.5.1:*:*:*:*:*:*:*
OR
cpe:/o:debian:debian_linux:2.1:*:*:*:*:*:*:*
OR
cpe:/o:debian:debian_linux:2.2:*:*:*:*:*:*:*
OR
cpe:/o:debian:debian_linux:2.3:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.1:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.1t:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.2:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.3:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.4:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.4b:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.4t:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5_iop:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5a:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5b:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5d:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5e:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5f:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5g:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5h:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:5.0.1:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:5.1:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:5.1.1:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:5.3:*:xfs:*:*:*:*:*
OR
cpe:/o:sgi:irix:5.0:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:3.2:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:3.3:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:3.3.1:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:3.3.2:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:3.3.3:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:4.0.5_ipr:*:*:*:*:*:*:*
Denotes that component is vulnerable
BACK
sgi
mailx 3
sgi
mailx 4
sgi
mailx 5
sgi
mailx 6.0.1
sgi
mailx 6.1
sgi
mailx 6.2
sgi
mailx 6.3
sgi
mailx 6.4
sgi
mailx 6.5
sgi
irix 5.2
sgi
irix 5.3
sgi
irix 6.0.1
sgi
irix 6.1
sgi
irix 6.2
sgi
irix 6.3
sgi
irix 6.4
sgi
irix 6.5
sgi
irix 6.0
sgi
irix 6.5.1
debian
debian linux 2.1
debian
debian linux 2.2
debian
debian linux 2.3
sgi
irix 4.0.5
sgi
irix 4.0.1
sgi
irix 4.0.1t
sgi
irix 4.0.2
sgi
irix 4.0.3
sgi
irix 4.0.4
sgi
irix 4.0.4b
sgi
irix 4.0.4t
sgi
irix 4.0.5_iop
sgi
irix 4.0.5a
sgi
irix 4.0.5b
sgi
irix 4.0.5d
sgi
irix 4.0.5e
sgi
irix 4.0.5f
sgi
irix 4.0.5g
sgi
irix 4.0.5h
sgi
irix 5.0.1
sgi
irix 5.1
sgi
irix 5.1.1
sgi
irix 5.3
sgi
irix 5.0
sgi
irix 3.2
sgi
irix 3.3
sgi
irix 3.3.1
sgi
irix 3.3.2
sgi
irix 3.3.3
sgi
irix 4.0
sgi
irix 4.0.5_ipr
Denotes that component is vulnerable