CVE-2001-0910

critical

Description

Legato Networker before 6.1 allows remote attackers to bypass access restrictions and gain privileges on the Networker interface by spoofing the admin server name and IP address and connecting to Networker from an IP address whose hostname can not be determined by a DNS reverse lookup.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/7601

http://www.securityfocus.com/bid/3564

http://marc.info/?l=bugtraq&m=100638782917917&w=2

Details

Source: Mitre, NVD

Published: 2001-11-21

Updated: 2017-12-19

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical