CVE-2001-0439

5 documents5 sources
Severity
7.5HIGH
EPSS
1.3%
top 19.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Licq LicqConectiva LinuxFreebsd Freebsd+3 more
Timeline
PublishedJul 2
Latest updateApr 30

Description

licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages5 packages

NVDlicq/licq1.0.2
NVDredhat/linux7.0
NVDconectiva/linux5 versions+4

Also affects: Freebsd 3.5.1, 4.2

Patches

Patch: archives.neohapsis.comPatch: distro.conectiva.com.brPatch: www.linux-mandrake.com

🔴Vulnerability Details

2
GHSA
GHSA-8wfc-6m4r-hvmp: licq before 12022-04-30
CVEList
CVE-2001-0439: licq before 12001-09-18

📋Vendor Advisories

1
Red Hat
security flaw2001-04-20

💬Community

1
Bugzilla
CVE-2001-0439 security flaw2018-08-16
CVE-2001-0439 (HIGH CVSS 7.5) | licq before 1.0.3 allows remote att | cvebase.io