CyberSec.Space Logo
CVEブラウザに戻る

CVE-2001-1359

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1190%
EPSS Percentile36.22th
Published2001年6月8日
Last Modified2026年4月16日

Vulnerability Description

Volution clients 1.0.7 and earlier attempt to contact the computer creation daemon (CCD) when an LDAP authentication failure occurs, which allows remote attackers to fully control clients via a Trojan horse Volution server.

Affected Platforms (CPE)

📦
Caldera

Volution

= 1.0
📦
Caldera

Volution

= 1.0.6
📦
Caldera

Volution

= 1.0.7

References & Advisories

🔗 http://www.caldera.com/support/security/advisories/CSSA-2001-021.0.txt
🔗 http://www.securityfocus.com/bid/2850
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6672
🔗 http://www.caldera.com/support/security/advisories/CSSA-2001-021.0.txt
🔗 http://www.securityfocus.com/bid/2850
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6672

関連する脆弱性情報

CVE-2002-09117.2

Caldera Volution Manager 1.1 stores the Directory Administrator password in cleartext in the slapd.conf file, which could allow lo...

CVE-2001-067910.0

A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO co...

CVE-2001-011310.0

statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value...

CVE-2001-012910.0

Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execut...