ID

VAR-200005-0034


CVE

CVE-2000-0346


TITLE

AppleShare IP 6.x Invalid perimeter request vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200005-013

DESCRIPTION

AppleShare IP 6.1 and later allows a remote attacker to read potentially sensitive information via an invalid range request to the web server. The additional data will appear appended to the file requested and may contain sensitive information

Trust: 1.26

sources: NVD: CVE-2000-0346 // BID: 1162 // VULHUB: VHN-1925

AFFECTED PRODUCTS

vendor:applemodel:applesharescope:eqversion:6.2

Trust: 1.6

vendor:applemodel:applesharescope:eqversion:6.3

Trust: 1.6

vendor:applemodel:applesharescope:eqversion:6.1

Trust: 1.6

vendor:applemodel:appleshare ipscope:eqversion:6.3

Trust: 0.3

vendor:applemodel:appleshare ipscope:eqversion:6.2

Trust: 0.3

vendor:applemodel:appleshare ipscope:eqversion:6.1

Trust: 0.3

sources: BID: 1162 // CNNVD: CNNVD-200005-013 // NVD: CVE-2000-0346

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2000-0346
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200005-013
value: MEDIUM

Trust: 0.6

VULHUB: VHN-1925
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2000-0346
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-1925
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-1925 // CNNVD: CNNVD-200005-013 // NVD: CVE-2000-0346

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-0346

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200005-013

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200005-013

EXTERNAL IDS

db:BIDid:1162

Trust: 2.0

db:NVDid:CVE-2000-0346

Trust: 1.7

db:CNNVDid:CNNVD-200005-013

Trust: 0.7

db:BUGTRAQid:20000502 INFO:APPLESHARE IP 6.3.2 SQUASHES SECURITY BUG

Trust: 0.6

db:VULHUBid:VHN-1925

Trust: 0.1

sources: VULHUB: VHN-1925 // BID: 1162 // CNNVD: CNNVD-200005-013 // NVD: CVE-2000-0346

REFERENCES

url:http://asu.info.apple.com/swupdates.nsf/artnum/n11670

Trust: 3.0

url:http://www.securityfocus.com/bid/1162

Trust: 2.7

url:http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000502133240.21807.qmail%40securityfocus.com

Trust: 2.0

url:http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000502133240.21807.qmail@securityfocus.com

Trust: 0.7

url:http://www.apple.com/appleshareip/

Trust: 0.3

url: -

Trust: 0.1

sources: VULHUB: VHN-1925 // BID: 1162 // CNNVD: CNNVD-200005-013 // NVD: CVE-2000-0346

CREDITS

Publicized by Apple Computer, Inc. on May 1, 2000. Additional information provided by Deepquest <deepquest@netscape.net>.

Trust: 0.9

sources: BID: 1162 // CNNVD: CNNVD-200005-013

SOURCES

db:VULHUBid:VHN-1925
db:BIDid:1162
db:CNNVDid:CNNVD-200005-013
db:NVDid:CVE-2000-0346

LAST UPDATE DATE

2024-11-22T23:03:18.892000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-1925date:2017-11-27T00:00:00
db:BIDid:1162date:2000-05-02T00:00:00
db:CNNVDid:CNNVD-200005-013date:2005-05-02T00:00:00
db:NVDid:CVE-2000-0346date:2024-11-20T23:32:17.647

SOURCES RELEASE DATE

db:VULHUBid:VHN-1925date:2000-05-02T00:00:00
db:BIDid:1162date:2000-05-02T00:00:00
db:CNNVDid:CNNVD-200005-013date:2000-05-02T00:00:00
db:NVDid:CVE-2000-0346date:2000-05-02T04:00:00