Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1389

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1389
Last Modified 10 Sep 2008 03:10:25
Published 29 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1389

Summary

Multiple vulnerabilities in xinetd 2.3.0 and earlier, and additional variants until 2.3.3, may allow remote attackers to cause a denial of service or execute arbitrary code, primarily via buffer overflows or improper NULL termination.

Vulnerable Systems

Application

  • Xinetd 2.1.8.8

  • Xinetd 2.1.8.8 Pre3

  • Xinetd 2.1.8.9 Pre1

  • Xinetd 2.1.8.9 Pre10

  • Xinetd 2.1.8.9 Pre11

  • Xinetd 2.1.8.9 Pre12

  • Xinetd 2.1.8.9 Pre13

  • Xinetd 2.1.8.9 Pre14

  • Xinetd 2.1.8.9 Pre15

  • Xinetd 2.1.8.9 Pre2

  • Xinetd 2.1.8.9 Pre3

  • Xinetd 2.1.8.9 Pre5

  • Xinetd 2.1.8.9 Pre7

  • Xinetd 2.1.8.9 Pre8

  • Xinetd 2.1.8.9 Pre9

  • Xinetd 2.3.0


References

REDHAT - RHSA-2001:109

MANDRAKE - MDKSA-2001:076

IMMUNIX - IMNX-2001-70-033-01

BID - 3257

BUGTRAQ - 20010830 xinetd 2.3.0 audit status


Last Updated: 27 May 2016 10:36:39