Vulnerability CVE-2000-0655 - CERT Civis.Net

Vulnerability Name:

CVE-2000-0655 (CCN-5014)

Assigned:

2000-07-25

Published:

2000-07-25

Updated:

2008-09-10

Summary:

Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: FREEBSD
Type: UNKNOWN
FreeBSD-SA-00:39

Source: NETBSD
Type: UNKNOWN
NetBSD-SA2000-011

Source: CCN
Type: BugTraq Mailing List, Mon Jul 24 2000 - 18:56:42 CDT
JPEG COM Marker Processing Vulnerability in Netscape Browsers

Source: BUGTRAQ
Type: UNKNOWN
20000801 MDKSA-2000:027-1 netscape update

Source: BUGTRAQ
Type: UNKNOWN
20000810 Conectiva Linux Security Announcement - netscape

Source: MITRE
Type: CNA
CVE-2000-0655

Source: CCN
Type: Netscape Communications, Inc. Web site
Netscape Products

Source: CCN
Type: TurboLinux Security Announcement TLSA2000017-1
netscape-4.73 and earlier

Source: CCN
Type: RHSA-2000:046-02
New netscape packages available to fix JPEG problem

Source: DEBIAN
Type: Debian Security Advisory 20000901
netscape navigator/communicator: remote exploit

Source: SUSE
Type: UNKNOWN
20000823 Security Hole in Netscape, Versions 4.x, possibly others

Source: CCN
Type: OSVDB ID: 14791
Netscape Communicator JPG Comment Overflow

Source: REDHAT
Type: UNKNOWN
RHSA-2000:046

Source: BID
Type: UNKNOWN
1503

Source: CCN
Type: BID-1503
Netscape Communicator JPEG-Comment Heap Overwrite Vulnerability

Source: BUGTRAQ
Type: Exploit, Patch, Vendor Advisory
20000724 JPEG COM Marker Processing Vulnerability in Netscape Browsers

Source: TURBO
Type: UNKNOWN
TLSA2000017-1

Source: CCN
Type: MandrakeSoft Security Advisory MDKSA-2000:027-1
netscape

Source: XF
Type: UNKNOWN
netscape-jpg-comment(5014)

Vulnerable Configuration:

Configuration 1:

cpe:/a:mozilla:mozilla:m15:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.0:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.05:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.5:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.5_beta:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.06:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.6:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.07:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.7:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.08:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.51:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.61:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.72:*:*:*:*:*:*:*

OR cpe:/a:netscape:communicator:4.73:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:netscape:communicator:*:*:*:*:*:*:*:*

AND

cpe:/o:turbolinux:turbolinux:*:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:*:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux:5.2:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux:6.2:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:7.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:7.1:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:6.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:6.1:*:*:*:*:*:*:*

Denotes that component is vulnerable