CVE-2000-0379
published 2000-05-16CVE-2000-0379: The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so.
PriorityP414low3.6CVSS 2.0
AVLACLAuNCPIPAN
EXPLOIT
EPSS
1.81%
75.9th percentile
The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netopia | r-series_routers | — | — |
CVSS provenance
nvdv2.03.6LOWAV:L/AC:L/Au:N/C:P/I:P/A:N
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-p59f-g5mj-4hqq: The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so
ghsa_unreviewed·2022-04-30
CVE-2000-0379 [LOW] GHSA-p59f-g5mj-4hqq: The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so
The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so.
Red Hat
security flaw
vendor_redhat·2002-05-10·CVSS 7.5
CVE-2002-0379 [HIGH] security flaw
security flaw
Buffer overflow in University of Washington imap server (uw-imapd) imap-2001 (imapd 2001.315) and imap-2001a (imapd 2001.315) with legacy RFC 1730 support, and imapd 2000.287 and earlier, allows remote authenticated users to execute arbitrary code via a long BODY request.
No detection rules found.
Exploit-DB
WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow (1)
exploitdb·2002-05-10
CVE-2002-0379 WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow (1)
WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow (1)
---
// source: https://www.securityfocus.com/bid/4713/info
Wu-imapd is vulnerable to a buffer overflow condition. This has been reported to occur when a valid user requests partial mailbox attributes. Exploitation may result in the execution of arbitrary code as the server process. An attacker may also be able to crash the server, resulting in a denial of service condition.
This only affects versions of imapd with legacy RFC 1730 support, which is disabled by default in imapd 2001.313 and imap-2001.315.
/*
* http://www.freeweb.nu/mantra/05_2002/uw-imapd.html
*
* uw-imapd.c - Remote exploit for uw imapd CAPABILITY IMAP4
*
* Copyright (C) 2002 Christophe "korty" Bailleux
* Copyright (C) 2002 Kostya Kortchinsky
*
*
Exploit-DB
WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow (2)
exploitdb·2002-05-10
CVE-2002-0379 WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow (2)
WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow (2)
---
// source: https://www.securityfocus.com/bid/4713/info
Wu-imapd is vulnerable to a buffer overflow condition. This has been reported to occur when a valid user requests partial mailbox attributes. Exploitation may result in the execution of arbitrary code as the server process. An attacker may also be able to crash the server, resulting in a denial of service condition.
This only affects versions of imapd with legacy RFC 1730 support, which is disabled by default in imapd 2001.313 and imap-2001.315.
/*
* 0x3a0x29wuim.c - WU-IMAP 2000.287 (linux/i86) remote exploit
*
* dekadish
*
* 0x3a0x29 crew
*
*/
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
Exploit-DB
Netopia R-series Routers 4.6.2 - Modifying SNMP Tables
exploitdb·2000-05-16
CVE-2000-0379 Netopia R-series Routers 4.6.2 - Modifying SNMP Tables
Netopia R-series Routers 4.6.2 - Modifying SNMP Tables
---
source: https://www.securityfocus.com/bid/1177/info
All R-series platforms with firmware between 4.3.8 and 4.6.2 (inclusive) allow users who already have access to the router to modify SNMP tables which they should not be able to access. The router has a command-line mode that is reached by typing control-N after the user has passed the intial login test. At the "#" prompt one can then do most management of the device. This includes the setting of SNMP community strings in spite of the limitation imposed by the administrator.
The following devices are confirmed as vulnerable:
R2020 Dual Analog Router
R3100 ISDN Router
R3100-I ISDL Router
R3100-T IDSL router for Covad
R3232-I IDSL 4-IMUX router
R5100 Serial router
R5200 DDS rou
http://www.netopia.com/equipment/purchase/fmw_update.htmlhttp://www.securityfocus.com/bid/1177http://www.securityfocus.com/templates/archive.pike?list=1&msg=200005082054.NAA32590%40linux.mtndew.comhttp://www.netopia.com/equipment/purchase/fmw_update.htmlhttp://www.securityfocus.com/bid/1177http://www.securityfocus.com/templates/archive.pike?list=1&msg=200005082054.NAA32590%40linux.mtndew.com
2000-05-16
Published