ID

VAR-200012-0099


CVE

CVE-2000-1038


TITLE

IBM AS/400 Firewall web Management interface vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200012-023

DESCRIPTION

The web administration interface for IBM AS/400 Firewall allows remote attackers to cause a denial of service via an empty GET request. As400 Firewall is prone to a denial-of-service vulnerability

Trust: 1.26

sources: NVD: CVE-2000-1038 // BID: 88465 // VULHUB: VHN-2608

AFFECTED PRODUCTS

vendor:ibmmodel:as400 firewallscope:eqversion:r440

Trust: 1.6

vendor:ibmmodel:as400 firewall r440scope: - version: -

Trust: 0.3

sources: BID: 88465 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2000-1038
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200012-023
value: MEDIUM

Trust: 0.6

VULHUB: VHN-2608
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2000-1038
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-2608
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-2608 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-1038

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200012-023

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200012-023

EXTERNAL IDS

db:NVDid:CVE-2000-1038

Trust: 2.0

db:XFid:5266

Trust: 0.9

db:CNNVDid:CNNVD-200012-023

Trust: 0.7

db:XFid:400

Trust: 0.6

db:AIXAPARid:SA90544

Trust: 0.6

db:BIDid:88465

Trust: 0.4

db:VULHUBid:VHN-2608

Trust: 0.1

sources: VULHUB: VHN-2608 // BID: 88465 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

REFERENCES

url:http://www-1.ibm.com/support/search.wss?rs=0&q=sa90544&apar=only

Trust: 2.0

url:http://as400service.rochester.ibm.com/n_dir/nas4apar.nsf/5ec6cdc6ab42894a862568f90073c74a/9ce636030a58807186256955003d128d?opendocument

Trust: 2.0

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/5266

Trust: 1.1

url:http://xforce.iss.net/static/5266.php

Trust: 0.9

sources: VULHUB: VHN-2608 // BID: 88465 // CNNVD: CNNVD-200012-023 // NVD: CVE-2000-1038

CREDITS

Unknown

Trust: 0.3

sources: BID: 88465

SOURCES

db:VULHUBid:VHN-2608
db:BIDid:88465
db:CNNVDid:CNNVD-200012-023
db:NVDid:CVE-2000-1038

LAST UPDATE DATE

2024-08-14T14:07:36.634000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-2608date:2017-10-10T00:00:00
db:BIDid:88465date:2000-12-11T00:00:00
db:CNNVDid:CNNVD-200012-023date:2005-05-02T00:00:00
db:NVDid:CVE-2000-1038date:2017-10-10T01:29:27.170

SOURCES RELEASE DATE

db:VULHUBid:VHN-2608date:2000-12-11T00:00:00
db:BIDid:88465date:2000-12-11T00:00:00
db:CNNVDid:CNNVD-200012-023date:2000-12-11T00:00:00
db:NVDid:CVE-2000-1038date:2000-12-11T05:00:00