Vulnerability Name:

CVE-2001-0886 (CCN-7705)

Assigned:2001-12-17
Published:2001-12-17
Updated:2018-05-03
Summary:Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{" character.
CVSS v3 Severity:5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: CCN
Type: BugTraq Mailing List, Mon Dec 17 2001 - 21:06:30 CST
[Global InterSec 2001121001] glibc globbing issues.

Source: CCN
Type: EnGarde Secure Linux Security Advisory ESA-20011217-01
glibc

Source: MITRE
Type: CNA
CVE-2001-0886

Source: CCN
Type: Conectiva Linux Announcement CLSA-2002:447
glibc glob buffer overflow

Source: CONECTIVA
Type: UNKNOWN
CLA-2002:447

Source: CCN
Type: Immunix OS Security Advisory IMNX-2001-70-037-01
glibc, nscd

Source: IMMUNIX
Type: UNKNOWN
IMNX-2001-70-037-01

Source: CCN
Type: RHSA-2001-160
Updated glibc packages are available

Source: MISC
Type: UNKNOWN
http://sources.redhat.com/ml/bug-glibc/2001-11/msg00109.html

Source: CCN
Type: CIAC Information Bulletin M-029
Red Hat glibc Vulnerability

Source: CIAC
Type: UNKNOWN
M-029

Source: DEBIAN
Type: UNKNOWN
DSA-103

Source: DEBIAN
Type: DSA-103
glibc -- buffer overflow

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2001:095

Source: ENGARDE
Type: UNKNOWN
ESA-20011217-01

Source: CCN
Type: OSVDB ID: 2007
GNU C Library (glibc) glob Function Remote Overflow

Source: REDHAT
Type: Patch, Vendor Advisory
RHSA-2001:160

Source: BUGTRAQ
Type: UNKNOWN
20011217 [Global InterSec 2001121001] glibc globbing issues.

Source: BID
Type: UNKNOWN
3707

Source: CCN
Type: BID-3707
Glibc File Globbing Heap Corruption Vulnerability

Source: CCN
Type: Trustix Secure Linux Security Advisory #2001-0029
glibc

Source: HP
Type: UNKNOWN
HPSBTL0112-008

Source: XF
Type: UNKNOWN
glibc-glob-bo(7705)

Source: XF
Type: UNKNOWN
glibc-glob-bo(7705)

Vulnerable Configuration:Configuration 1:
  • cpe:/o:debian:debian_linux:2.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:6.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:*:*:*:*:*:*:*:* (Version <= 7.2)

    • Configuration CCN 1:
  • cpe:/a:gnu:glibc:*:*:*:*:*:*:*:*
  • AND
  • cpe:/o:redhat:linux:6.2:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:2.2:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/o:engardelinux:secure_community:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.01:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.2:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:5.0:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:prg_graficos:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:ecommerce:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:5.1:*:*:*:*:*:*:*
  • OR cpe:/a:mandrakesoft:mandrake_single_network_firewall:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.5:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.3:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.0:*:ppc:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.1:*:ia64:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.debian:def:103
    V
    		buffer overflow
    2002-01-13
    BACK
    debian debian linux 2.1
    redhat linux 6.2
    redhat linux 7.0
    redhat linux 7.1
    redhat linux *
    gnu glibc *
    redhat linux 6.2
    debian debian linux 2.2
    mandrakesoft mandrake linux 7.1
    trustix secure linux 1.1
    redhat linux 7
    mandrakesoft mandrake linux 7.2
    conectiva linux 6.0
    mandrakesoft mandrake linux corporate server 1.0.1
    engardelinux secure community 1.0.1
    redhat linux 7.1
    trustix secure linux 1.01
    trustix secure linux 1.2
    mandrakesoft mandrake linux 8.0
    conectiva linux 5.0
    conectiva linux prg_graficos
    conectiva linux ecommerce
    conectiva linux 5.1
    mandrakesoft mandrake single network firewall 7.2
    conectiva linux 7.0
    trustix secure linux 1.5
    mandrakesoft mandrake linux 8.1
    redhat linux 7.2
    redhat linux 7.3
    mandrakesoft mandrake linux 8.0
    mandrakesoft mandrake linux 8.1