CyberSec.Space Logo
返回 CVE 浏览器

CVE-2001-0825

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile39.16th
Published2001年12月6日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in internal string handling routines of xinetd before 2.1.8.8 allows remote attackers to execute arbitrary commands via a length argument of zero or less, which disables the length check.

Affected Platforms (CPE)

📦
Xinetd

Xinetd

<= 2.3.1
📦
Xinetd

Xinetd

= 2.1.8.8
📦
Xinetd

Xinetd

= 2.1.8.9
📦
Xinetd

Xinetd

= 2.3.0

References & Advisories

🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000406
🔗 http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-029-01
🔗 http://www.redhat.com/support/errata/RHSA-2001-092.html
🔗 http://www.securityfocus.com/bid/2971
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6804
🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000406
🔗 http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-029-01
🔗 http://www.redhat.com/support/errata/RHSA-2001-092.html

相关漏洞威胁

CVE-2017-124779.8

It was discovered that the bpserverd proprietary protocol in Unitrends Backup (UB) before 10.0.0, as invoked through xinetd, has a...

CVE-2013-43427.6

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as ...

CVE-2000-05367.5

xinetd 2.1.8.x does not properly restrict connections if hostnames are used for access control and the connecting host does not ha...

CVE-2001-13897.5

Multiple vulnerabilities in xinetd 2.3.0 and earlier, and additional variants until 2.3.3, may allow remote attackers to cause a d...