CVE-2001-0679 - Vulnerability Details - OpenCVE

A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO command to the server.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Trend Micro	Interscan Viruswall

Configuration 1 [-]

OR	cpe:2.3:a:trend_micro:interscan_viruswall:3.3:::::::*
	cpe:2.3:a:trend_micro:interscan_viruswall:3.23:::::::*

No data.

References

Link	Providers
http://marc.info/?l=bugtraq&m=94204166130782&w=2
http://marc.info/?l=ntbugtraq&m=94208143007829&w=2
http://marc.info/?l=ntbugtraq&m=94216491202063&w=2
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9911&L=NTBUGTRAQ&P=R2331
https://exchange.xforce.ibmcloud.com/vulnerabilities/3465

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2001-09-12T04:00:00

Updated: 2024-08-08T04:30:06.193Z

Reserved: 2001-08-29T00:00:00

Link: CVE-2001-0679

Vulnrichment

No data.

NVD

Status : Deferred

Published: 1999-11-08T05:00:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2001-0679

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "1999-11-08T00:00:00", "descriptions": [{"lang": "en", "value": "A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO command to the server."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-18T21:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "19991108 Patch for VirusWall 3.23.", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=94204166130782&w=2"}, {"name": "19991108 Interscan VirusWall NT 3.23/3.3 buffer overflow.", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9911&L=NTBUGTRAQ&P=R2331"}, {"name": "19991108 Patch for VirusWall 3.23.", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://marc.info/?l=ntbugtraq&m=94208143007829&w=2"}, {"name": "19991109 InterScan VirusWall 3.23/3.3 Buffer Overflow", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://marc.info/?l=ntbugtraq&m=94216491202063&w=2"}, {"name": "viruswall-helo-bo(3465)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/3465"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2001-0679", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO command to the server."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "19991108 Patch for VirusWall 3.23.", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=94204166130782&w=2"}, {"name": "19991108 Interscan VirusWall NT 3.23/3.3 buffer overflow.", "refsource": "NTBUGTRAQ", "url": "http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9911&L=NTBUGTRAQ&P=R2331"}, {"name": "19991108 Patch for VirusWall 3.23.", "refsource": "NTBUGTRAQ", "url": "http://marc.info/?l=ntbugtraq&m=94208143007829&w=2"}, {"name": "19991109 InterScan VirusWall 3.23/3.3 Buffer Overflow", "refsource": "NTBUGTRAQ", "url": "http://marc.info/?l=ntbugtraq&m=94216491202063&w=2"}, {"name": "viruswall-helo-bo(3465)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/3465"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T04:30:06.193Z"}, "title": "CVE Program Container", "references": [{"name": "19991108 Patch for VirusWall 3.23.", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=94204166130782&w=2"}, {"name": "19991108 Interscan VirusWall NT 3.23/3.3 buffer overflow.", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9911&L=NTBUGTRAQ&P=R2331"}, {"name": "19991108 Patch for VirusWall 3.23.", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=ntbugtraq&m=94208143007829&w=2"}, {"name": "19991109 InterScan VirusWall 3.23/3.3 Buffer Overflow", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=ntbugtraq&m=94216491202063&w=2"}, {"name": "viruswall-helo-bo(3465)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/3465"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2001-0679", "datePublished": "2001-09-12T04:00:00", "dateReserved": "2001-08-29T00:00:00", "dateUpdated": "2024-08-08T04:30:06.193Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trend_micro:interscan_viruswall:3.3:*:*:*:*:*:*:*", "matchCriteriaId": "7A9D4E2E-889B-4233-8887-9CF00A5023A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:interscan_viruswall:3.23:*:*:*:*:*:*:*", "matchCriteriaId": "CEB4744D-EE43-4C45-AFA1-31AF57F4DEDC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO command to the server."}], "id": "CVE-2001-0679", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "1999-11-08T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=94204166130782&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=ntbugtraq&m=94208143007829&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=ntbugtraq&m=94216491202063&w=2"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9911&L=NTBUGTRAQ&P=R2331"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/3465"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=94204166130782&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=ntbugtraq&m=94208143007829&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=ntbugtraq&m=94216491202063&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Vendor Advisory"], "url": "http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9911&L=NTBUGTRAQ&P=R2331"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/3465"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}