Vulnerability CVE-2001-1128


Published: 2001-10-08   Modified: 2012-02-12

Description:
Buffer overflow in Progress database 8.3D and 9.1C allows local users to execute arbitrary code via long entries in files that are specified by the (1) PROMSGS or (2) PROTERMCAP environment variables.

Type:

CWE-Other

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Progress -> Progress 

 References:
http://www.securityfocus.com/archive/1/219174
http://www.securityfocus.com/bid/3414
https://exchange.xforce.ibmcloud.com/vulnerabilities/7264

Copyright 2024, cxsecurity.com

 

Back to Top