Details of VAR-200102-0114

ID

VAR-200102-0114

CVE

CVE-2001-1439

TITLE

Hewlett Packard HP-UX text editors contain buffer overflow

Trust: 0.8

sources: CERT/CC: VU#268848

DESCRIPTION

Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, and (6) vedit. A buffer overflow in the text editor on certain Hewlett-Packard systems could compromise system availability. Multiple Cisco networking products contain a denial-of-service vulnerability. There is an information integrity vulnerability in the SSH1 protocol that allows packets encrypted with a block cipher to be modified without notice. There is a remote integer overflow vulnerability in several implementations of the SSH1 protocol that allows an attacker to execute arbitrary code with the privileges of the SSH daemon, typically root. The program pgp4pine version 1.75.6 fails to properly identify expired keys when working with the Gnu Privacy Guard program (GnuPG). This failure may result in the clear-text transmission of senstive information when used with the PINE mail reading package. The SEDUM web server permits intruders to access files outside the web root. While addressing vulnerabilities described in http://www.cisco.com/warp/public/707/SSH-multiple-pub.html, a denial of service condition has been inadvertently introduced into firmware upgrades. Firmware for routers and switches (IOS), Catalyst 6000 switches running CatOS, Cisco PIX Firewall and Cisco 11000 Content Service Switch devices may be vulnerable. Cisco has reported that scanning for SSH vulnerabilities on affected devices will cause excessive CPU consumption. The condition is due to a failure of the Cisco SSH implementation to properly process large SSH packets. Repeated and concurrent attacks may result in a denial of device service. As many of these devices are critical infrastructure components, more serious network outages may occur. Cisco has released upgrades that will eliminate this vulnerability. HP-UX is prone to a denial-of-service vulnerability

Trust: 7.2

sources: NVD: CVE-2001-1439 // CERT/CC: VU#268848 // CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // BID: 5114 // BID: 88702

AFFECTED PRODUCTS

vendor:	ssh security	model:	-	scope:	-	version:	-	Trust: 3.2
vendor:	cisco	model:	catalyst csx	scope:	eq	version:	60005.3	Trust: 2.4
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.24	Trust: 1.9
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.20	Trust: 1.9
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.10	Trust: 1.9
vendor:	cisco	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	openssh	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.00	Trust: 1.6
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.01	Trust: 1.6
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.04	Trust: 1.6
vendor:	cisco	model:	ios 12.1 ex	scope:	-	version:	-	Trust: 1.2
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1	Trust: 0.9
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5	Trust: 0.9
vendor:	hewlett packard	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	core sdi	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	debian	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	freebsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	smoothwall	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	suse	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	holger lamm	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	pix firewall	scope:	eq	version:	6.2	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	6.1	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	6.0	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	5.3	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	5.2	Trust: 0.3
vendor:	cisco	model:	ios 12.2yh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2ya	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xw	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xt	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xs	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xr	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xn	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xk	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xe	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2dd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2da	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2bc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2b	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.2	Trust: 0.3
vendor:	cisco	model:	ios 12.1yi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ye	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xu	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xt	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xp	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ec	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1e	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0xv	Trust: 0.3
vendor:	cisco	model:	ios 12.0xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0st	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0sp	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11000 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.1(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.3(4)	Trust: 0.3
vendor:	cisco	model:	catalyst pan	scope:	eq	version:	60006.3	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.2(0.111)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.2(0.110)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1(2.13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.0	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.04	scope:	-	version:	-	Trust: 0.3

sources: CERT/CC: VU#268848 // CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#315308 // BID: 5114 // BID: 88702 // CNNVD: CNNVD-200102-083 // NVD: CVE-2001-1439

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2001-1439
value:	LOW
Trust: 1.0
CARNEGIE MELLON:	VU#268848
value:	5.61
Trust: 0.8
CARNEGIE MELLON:	VU#290140
value:	21.09
Trust: 0.8
CARNEGIE MELLON:	VU#13877
value:	6.84
Trust: 0.8
CARNEGIE MELLON:	VU#25309
value:	0.39
Trust: 0.8
CARNEGIE MELLON:	VU#945216
value:	99.00
Trust: 0.8
CARNEGIE MELLON:	VU#566640
value:	0.68
Trust: 0.8
CARNEGIE MELLON:	VU#651994
value:	1.50
Trust: 0.8
CARNEGIE MELLON:	VU#315308
value:	2.06
Trust: 0.8
CNNVD:	CNNVD-200102-083
value:	LOW
Trust: 0.6

NVD:	CVE-2001-1439
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	FALSE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	FALSE
version:	2.0
Trust: 1.0

sources: CERT/CC: VU#268848 // CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // CNNVD: CNNVD-200102-083 // NVD: CVE-2001-1439

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2001-1439

THREAT TYPE

local

Trust: 0.9

sources: BID: 88702 // CNNVD: CNNVD-200102-083

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200102-083

CONFIGURATIONS

sources: NVD: CVE-2001-1439

EXTERNAL IDS

db:	CERT/CC	id:	VU#13877	Trust: 3.2
db:	CERT/CC	id:	VU#268848	Trust: 2.7
db:	CERT/CC	id:	VU#945216	Trust: 2.4
db:	CERT/CC	id:	VU#25309	Trust: 2.4
db:	AUSCERT	id:	ESB-2001.066	Trust: 1.9
db:	NVD	id:	CVE-2001-1439	Trust: 1.9
db:	BID	id:	5114	Trust: 1.1
db:	XF	id:	6111	Trust: 0.9
db:	CERT/CC	id:	VU#290140	Trust: 0.8
db:	XF	id:	6449	Trust: 0.8
db:	BID	id:	2347	Trust: 0.8
db:	XF	id:	6083	Trust: 0.8
db:	XF	id:	6135	Trust: 0.8
db:	BID	id:	2405	Trust: 0.8
db:	CERT/CC	id:	VU#566640	Trust: 0.8
db:	BID	id:	2335	Trust: 0.8
db:	XF	id:	6063	Trust: 0.8
db:	CERT/CC	id:	VU#651994	Trust: 0.8
db:	XF	id:	6472	Trust: 0.8
db:	CERT/CC	id:	VU#315308	Trust: 0.8
db:	HP	id:	HPSBUX0011-132	Trust: 0.6
db:	CNNVD	id:	CNNVD-200102-083	Trust: 0.6
db:	BID	id:	88702	Trust: 0.3

sources: CERT/CC: VU#268848 // CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // BID: 5114 // BID: 88702 // CNNVD: CNNVD-200102-083 // NVD: CVE-2001-1439

REFERENCES

url:	http://www.kb.cert.org/vuls/id/13877	Trust: 2.4
url:	http://www.ssh.com/products/ssh/cert/	Trust: 2.4
url:	http://www.auscert.org.au/render.html?it=1176	Trust: 1.9
url:	http://www.securityfocus.com/archive/1/163910	Trust: 1.9
url:	http://www.kb.cert.org/vuls/id/268848	Trust: 1.9
url:	http://www.cert.org/advisories/ca-2001-35.html	Trust: 1.6
url:	http://www.kb.cert.org/vuls/id/945216	Trust: 1.6
url:	http://www.kb.cert.org/vuls/id/25309	Trust: 1.6
url:	http://www.cisco.com/warp/public/707/ssh-scanning.shtml	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/6111	Trust: 1.0
url:	http://xforce.iss.net/xforce/xfdb/6111	Trust: 0.9
url:	about vulnerability notes	Trust: 0.8
url:	contact us about this vulnerability	Trust: 0.8
url:	provide a vendor statement	Trust: 0.8
url:	http://www.securityfocus.com/bid/5114	Trust: 0.8
url:	http://www.cisco.com/warp/public/707/ssh-multiple-pub.html	Trust: 0.8
url:	http://www.corest.com/files/files/11/crc32.pdf	Trust: 0.8
url:	http://www1.corest.com/common/showdoc.php?idx=131&idxseccion=10	Trust: 0.8
url:	http://xforce.iss.net/static/6449.php	Trust: 0.8
url:	http://razor.bindview.com/publish/advisories/adv_ssh1crc.html	Trust: 0.8
url:	http://www1.corest.com/common/showdoc.php?idx=81&idxsection=10#	Trust: 0.8
url:	http://www.openssh.com/security.html	Trust: 0.8
url:	http://www.securityfocus.com/bid/2347	Trust: 0.8
url:	http://www.ssh.com/products/ssh/advisories/ssh1_crc-32.cfm	Trust: 0.8
url:	http://xforce.iss.net/static/6083.php	Trust: 0.8
url:	http://xforce.iss.net/alerts/advise100.php	Trust: 0.8
url:	http://www.cryptnet.net/fcp/audit/pgp4pine/01.html	Trust: 0.8
url:	http://www.securityfocus.com/bid/2405	Trust: 0.8
url:	http://xforce.iss.net/static/6135.php	Trust: 0.8
url:	http://devrandom.net/lists/archives/2001/2/bugtraq/0383.html	Trust: 0.8
url:	http://security-archive.merton.ox.ac.uk/bugtraq-200102/0389.html	Trust: 0.8
url:	http://pgp4pine.flatline.de/	Trust: 0.8
url:	http://www.securityfocus.com/bid/2335	Trust: 0.8
url:	http://xforce.iss.net/static/6063.php	Trust: 0.8
url:	http://www.securityfocus.com/archive/1/160452	Trust: 0.8
url:	http://xforce.iss.net/static/6472.php	Trust: 0.8

sources: CERT/CC: VU#268848 // CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // BID: 5114 // BID: 88702 // CNNVD: CNNVD-200102-083 // NVD: CVE-2001-1439

CREDITS

Credited to Cisco Systems.

Trust: 0.3

sources: BID: 5114

SOURCES

db:	CERT/CC	id:	VU#268848
db:	CERT/CC	id:	VU#290140
db:	CERT/CC	id:	VU#13877
db:	CERT/CC	id:	VU#25309
db:	CERT/CC	id:	VU#945216
db:	CERT/CC	id:	VU#566640
db:	CERT/CC	id:	VU#651994
db:	CERT/CC	id:	VU#315308
db:	BID	id:	5114
db:	BID	id:	88702
db:	CNNVD	id:	CNNVD-200102-083
db:	NVD	id:	CVE-2001-1439

LAST UPDATE DATE

2022-05-06T22:18:22.186000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#268848	date:	2001-08-10T00:00:00
db:	CERT/CC	id:	VU#290140	date:	2002-12-12T00:00:00
db:	CERT/CC	id:	VU#13877	date:	2003-05-20T00:00:00
db:	CERT/CC	id:	VU#25309	date:	2002-03-05T00:00:00
db:	CERT/CC	id:	VU#945216	date:	2003-05-20T00:00:00
db:	CERT/CC	id:	VU#566640	date:	2002-01-15T00:00:00
db:	CERT/CC	id:	VU#651994	date:	2001-06-26T00:00:00
db:	CERT/CC	id:	VU#315308	date:	2002-03-05T00:00:00
db:	BID	id:	5114	date:	2002-06-27T00:00:00
db:	BID	id:	88702	date:	2001-02-16T00:00:00
db:	CNNVD	id:	CNNVD-200102-083	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2001-1439	date:	2017-07-11T01:29:00

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#268848	date:	2001-05-04T00:00:00
db:	CERT/CC	id:	VU#290140	date:	2002-06-27T00:00:00
db:	CERT/CC	id:	VU#13877	date:	2001-11-07T00:00:00
db:	CERT/CC	id:	VU#25309	date:	2000-09-26T00:00:00
db:	CERT/CC	id:	VU#945216	date:	2001-10-24T00:00:00
db:	CERT/CC	id:	VU#566640	date:	2001-07-12T00:00:00
db:	CERT/CC	id:	VU#651994	date:	2001-05-16T00:00:00
db:	CERT/CC	id:	VU#315308	date:	2001-01-18T00:00:00
db:	BID	id:	5114	date:	2002-06-27T00:00:00
db:	BID	id:	88702	date:	2001-02-16T00:00:00
db:	CNNVD	id:	CNNVD-200102-083	date:	2001-02-16T00:00:00
db:	NVD	id:	CVE-2001-1439	date:	2001-02-16T05:00:00