CVE-2000-0588
Published Jun 26, 2000
Last updated 11 years ago
Overview
- Description
- SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sawmill:sawmill:5.0.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4673D2AA-E1BE-4809-94BE-7C6951E9D2D4"
}
],
"operator": "OR"
}
]
}
]