CVE-2001-0825

Published: Dec 6, 2001Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Buffer overflow in internal string handling routines of xinetd before 2.1.8.8 allows remote attackers to execute arbitrary commands via a length argument of zero or less, which disables the length check.

Affected (4)

Products: Xinetd: Xinetd

Xinetd

1 product

Xinetd

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Xinetd Xinetd	Up to 2.3.1
Xinetd Xinetd	Version 2.1.8.8
Xinetd Xinetd	Version 2.1.8.9
Xinetd Xinetd	Version 2.3.0

References (10)

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000406

Source: cve@mitre.org

PatchVendor Advisory

http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-029-01

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2001-092.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/2971

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/6804

Source: cve@mitre.org

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000406