CVE-2001-0667
published 2001-10-30CVE-2001-0667: Internet Explorer 6 and earlier, when used with the Telnet client in Services for Unix (SFU) 2.0, allows remote attackers to execute commands by spawning…
PriorityP431high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
EPSS
14.68%
96.2th percentile
Internet Explorer 6 and earlier, when used with the Telnet client in Services for Unix (SFU) 2.0, allows remote attackers to execute commands by spawning Telnet with a log file option on the command line and writing arbitrary code into an executable file which is later executed, aka a new variant of the Telnet Invocation vulnerability as described in CVE-2001-0150.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | <= 6.0 | — |
CVSS provenance
nvdv3.17.3HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.ciac.org/ciac/bulletins/m-024.shtmlhttp://www.kb.cert.org/vuls/id/952611https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-051https://exchange.xforce.ibmcloud.com/vulnerabilities/7260http://www.ciac.org/ciac/bulletins/m-024.shtmlhttp://www.kb.cert.org/vuls/id/952611https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-051https://exchange.xforce.ibmcloud.com/vulnerabilities/7260
2001-10-30
Published