Vulnerability Details CVE-2001-1456
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.091
EPSS Ranking 92.2%
CVSS Severity
CVSS v2 Score 7.5
References
- ftp://patches.sgi.com/support/free/security/advisories/20011104-01-I
- http://www.cert.org/advisories/CA-2001-25.html
- http://www.kb.cert.org/vuls/id/206723
- http://www.securityfocus.com/bid/3290
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7088
- ftp://patches.sgi.com/support/free/security/advisories/20011104-01-I
- http://www.cert.org/advisories/CA-2001-25.html
- http://www.kb.cert.org/vuls/id/206723
- http://www.securityfocus.com/bid/3290
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7088
Products affected by CVE-2001-1456
-
cpe:2.3:a:mcafee:webshield_smtp:4.0
-
cpe:2.3:a:mcafee:webshield_smtp:4.1
-
cpe:2.3:a:network_associates:gauntlet_firewall:4.2
-
cpe:2.3:a:network_associates:gauntlet_firewall:unix_5.0
-
cpe:2.3:a:network_associates:gauntlet_firewall:unix_5.5
-
cpe:2.3:a:network_associates:gauntlet_firewall:unix_6.0
-
cpe:2.3:h:network_associates:mcafee_e-ppliance:100_series
-
cpe:2.3:h:network_associates:mcafee_e-ppliance:120_series
-
cpe:2.3:h:pgp:e-ppliance_300:1.0
-
cpe:2.3:h:pgp:e-ppliance_300:1.5
-
cpe:2.3:h:pgp:e-ppliance_300:2.0
-
cpe:2.3:o:sgi:irix:6.2
-
cpe:2.3:o:sgi:irix:6.3
-
cpe:2.3:o:sgi:irix:6.4
-
cpe:2.3:o:sgi:irix:6.5