Details of VAR-200012-0099

ID

VAR-200012-0099

CVE

CVE-2000-1038

TITLE

IBM AS/400 Firewall web Management interface vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200012-023

DESCRIPTION

The web administration interface for IBM AS/400 Firewall allows remote attackers to cause a denial of service via an empty GET request. As400 Firewall is prone to a denial-of-service vulnerability

Trust: 1.26

sources: NVD: CVE-2000-1038 // BID: 88465 // VULHUB: VHN-2608

AFFECTED PRODUCTS

vendor:	ibm	model:	as400 firewall	scope:	eq	version:	r440	Trust: 1.6
vendor:	ibm	model:	as400 firewall r440	scope:	-	version:	-	Trust: 0.3

sources: BID: 88465 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2000-1038
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200012-023
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-2608
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2000-1038
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-2608
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-2608 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-1038

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200012-023

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200012-023

EXTERNAL IDS

db:	NVD	id:	CVE-2000-1038	Trust: 2.0
db:	XF	id:	5266	Trust: 0.9
db:	CNNVD	id:	CNNVD-200012-023	Trust: 0.7
db:	XF	id:	400	Trust: 0.6
db:	AIXAPAR	id:	SA90544	Trust: 0.6
db:	BID	id:	88465	Trust: 0.4
db:	VULHUB	id:	VHN-2608	Trust: 0.1

sources: VULHUB: VHN-2608 // BID: 88465 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

REFERENCES

url:	http://www-1.ibm.com/support/search.wss?rs=0&q=sa90544&apar=only	Trust: 2.0
url:	http://as400service.rochester.ibm.com/n_dir/nas4apar.nsf/5ec6cdc6ab42894a862568f90073c74a/9ce636030a58807186256955003d128d?opendocument	Trust: 2.0
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/5266	Trust: 1.1
url:	http://xforce.iss.net/static/5266.php	Trust: 0.9

sources: VULHUB: VHN-2608 // BID: 88465 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

CREDITS

Unknown

Trust: 0.3

sources: BID: 88465

SOURCES

db:	VULHUB	id:	VHN-2608
db:	BID	id:	88465
db:	CNNVD	id:	CNNVD-200012-023
db:	NVD	id:	CVE-2000-1038

LAST UPDATE DATE

2024-08-14T14:07:36.634000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-2608	date:	2017-10-10T00:00:00
db:	BID	id:	88465	date:	2000-12-11T00:00:00
db:	CNNVD	id:	CNNVD-200012-023	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2000-1038	date:	2017-10-10T01:29:27.170

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-2608	date:	2000-12-11T00:00:00
db:	BID	id:	88465	date:	2000-12-11T00:00:00
db:	CNNVD	id:	CNNVD-200012-023	date:	2000-12-11T00:00:00
db:	NVD	id:	CVE-2000-1038	date:	2000-12-11T05:00:00