CyberSec.Space Logo
CVEブラウザに戻る

CVE-2000-0584

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1820%
EPSS Percentile29.09th
Published2000年7月2日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name.

Affected Platforms (CPE)

💻
Debian

Debian Linux

= 2.1
💻
Freebsd

Freebsd

= 3.5

References & Advisories

🔗 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:31.canna.asc.v1.1
🔗 http://shadowpenguin.backsection.net/advisories/advisory038.html
🔗 http://www.securityfocus.com/bid/1445
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/4912
🔗 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:31.canna.asc.v1.1
🔗 http://shadowpenguin.backsection.net/advisories/advisory038.html
🔗 http://www.securityfocus.com/bid/1445
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/4912

関連する脆弱性情報

CVE-1999-069810.0

Denial of service in IP protocol logger (ippl) on Red Hat and Debian Linux.

CVE-2026-234628.8

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HIDP: Fix possible UAF This fixes the following t...

CVE-2006-70948.5

ftpd, as used by Gentoo and Debian Linux, sets the gid to the effective uid instead of the effective group id before executing /bi...

CVE-2026-231717.8

In the Linux kernel, the following vulnerability has been resolved: bonding: fix use-after-free due to enslave fail after slave a...