CVE-2000-0780

Published Oct 20, 2000

Last updated 3 months ago

CVSS info 6.4

Overview

Description: The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.4
Impact score: 4.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ipswitch:imail:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EFEFE5A5-6589-4316-9C9F-2F8109696158"
          },
          {
            "criteria": "cpe:2.3:a:ipswitch:imail:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EADF489-0420-4C47-9F73-78114C2042F3"
          },
          {
            "criteria": "cpe:2.3:a:ipswitch:imail:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EAEA8FB7-3D42-4A39-BCCD-2DE3BC3EAC19"
          },
          {
            "criteria": "cpe:2.3:a:ipswitch:imail:6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12658962-53E6-49EB-83EF-04A1B5D693B3"
          },
          {
            "criteria": "cpe:2.3:a:ipswitch:imail:6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6DA61FCA-BA3C-4014-9C4B-4D4ED65AB07A"
          },
          {
            "criteria": "cpe:2.3:a:ipswitch:imail:6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0BC7230-2A64-43CE-B041-22F2E4A559A9"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References