CVE-2000-0697

Published: Oct 20, 2000Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters.

Affected (4)

Products: Sun: Solaris Answerbook2

Sun

1 product

Solaris Answerbook2

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Sun Solaris Answerbook2	Version 1.3
Sun Solaris Answerbook2	Version 1.4.1
Sun Solaris Answerbook2	Version 1.4.2
Sun Solaris Answerbook2	Version 1.4

References (10)

http://archives.neohapsis.com/archives/sun/2000-q3/0001.html

Source: cve@mitre.org

PatchVendor Advisory

http://seclists.org/bugtraq/2000/Aug/0105.html

Source: cve@mitre.org

http://www.iss.net/security_center/static/5058.php

Source: cve@mitre.org

http://www.s21sec.com/en/avisos/s21sec-004-en.txt

Source: cve@mitre.org

http://www.securityfocus.com/bid/1556

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://archives.neohapsis.com/archives/sun/2000-q3/0001.html