Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0398

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0398
Last Modified 05 Sep 2008 04:24:00
Published 18 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0398

Summary

The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment and execute arbitrary commands via an attachment whose file name contains many spaces, which also causes the BAT! to misrepresent the attachment's type with a different icon.

Vulnerable Systems

Application

  • Ritlabs The Bat 1.0 Build1336

  • Ritlabs The Bat 1.0 Build1349

  • Ritlabs The Bat 1.011

  • Ritlabs The Bat 1.015

  • Ritlabs The Bat 1.028

  • Ritlabs The Bat 1.029

  • Ritlabs The Bat 1.031

  • Ritlabs The Bat 1.032

  • Ritlabs The Bat 1.035

  • Ritlabs The Bat 1.036

  • Ritlabs The Bat 1.037

  • Ritlabs The Bat 1.039

  • Ritlabs The Bat 1.041

  • Ritlabs The Bat 1.043

  • Ritlabs The Bat 1.1

  • Ritlabs The Bat 1.101

  • Ritlabs The Bat 1.14

  • Ritlabs The Bat 1.15

  • Ritlabs The Bat 1.17

  • Ritlabs The Bat 1.18

  • Ritlabs The Bat 1.19

  • Ritlabs The Bat 1.21

  • Ritlabs The Bat 1.22

  • Ritlabs The Bat 1.31

  • Ritlabs The Bat 1.32

  • Ritlabs The Bat 1.33

  • Ritlabs The Bat 1.34

  • Ritlabs The Bat 1.35

  • Ritlabs The Bat 1.36

  • Ritlabs The Bat 1.39

  • Ritlabs The Bat 1.41

  • Ritlabs The Bat 1.42

  • Ritlabs The Bat 1.42f

  • Ritlabs The Bat 1.43

  • Ritlabs The Bat 1.44

  • Ritlabs The Bat 1.45

  • Ritlabs The Bat 1.46

  • Ritlabs The Bat 1.47

  • Ritlabs The Bat 1.48

  • Ritlabs The Bat 1.49


References

BID - 2530

BUGTRAQ - 20010402 ~..~!guano


Last Updated: 27 May 2016 10:36:14