CyberSec.Space Logo
Back to CVE Browser

CVE-2001-1359

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1190%
EPSS Percentile36.22th
PublishedJun 8, 2001
Last ModifiedApr 16, 2026

Vulnerability Description

Volution clients 1.0.7 and earlier attempt to contact the computer creation daemon (CCD) when an LDAP authentication failure occurs, which allows remote attackers to fully control clients via a Trojan horse Volution server.

Affected Platforms (CPE)

πŸ“¦
Caldera

Volution

= 1.0
πŸ“¦
Caldera

Volution

= 1.0.6
πŸ“¦
Caldera

Volution

= 1.0.7

References & Advisories

πŸ”— http://www.caldera.com/support/security/advisories/CSSA-2001-021.0.txt
πŸ”— http://www.securityfocus.com/bid/2850
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/6672
πŸ”— http://www.caldera.com/support/security/advisories/CSSA-2001-021.0.txt
πŸ”— http://www.securityfocus.com/bid/2850
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/6672

Related Vulnerabilities

CVE-2002-09117.2

Caldera Volution Manager 1.1 stores the Directory Administrator password in cleartext in the slapd.conf file, which could allow lo...

CVE-2001-003210.0

Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privil...

CVE-2001-002110.0

MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate...

CVE-2001-011310.0

statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value...