CVE-2001-0134

3 documents3 sources

Severity

10.0CRITICAL

EPSS

2.0%

top 16.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Compaq Armada Insight Manager Compaq Enterprise Volume Manager-command Scripter Compaq Foundation Agents +12 more

Timeline

PublishedMar 12

Latest updateApr 30

Description

Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary commands via a long user name.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages15 packages

▶NVDcompaq/management_agents4 versions+3

▶NVDcompaq/insight_management_agent4.37e

▶NVDcompaq/insight_management_desktop_web_agent3.7

▶NVDcompaq/foundation_agents4 versions+3

▶NVDcompaq/insight_manager_lc1.3c, 1.50a+1

Patches

Patch: www.securityfocus.com ↗Patch: www5.compaq.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-9c63-fc87-mfvj: Buffer overflow in cpqlogin↗2022-04-30

▶

CVEList

CVE-2001-0134: Buffer overflow in cpqlogin↗2001-02-14

▶