CVE-2001-1456
Severity Score
9.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2001-09-04 CVE Published
- 2005-04-21 CVE Reserved
- 2024-08-08 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://www.cert.org/advisories/CA-2001-25.html | Third Party Advisory | |
| http://www.securityfocus.com/bid/3290 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/7088 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| ftp://patches.sgi.com/support/free/security/advisories/20011104-01-I | 2017-07-11 | |
| http://www.kb.cert.org/vuls/id/206723 | 2017-07-11 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Mcafee Search vendor "Mcafee" | Webshield Smtp Search vendor "Mcafee" for product "Webshield Smtp" | 4.0 Search vendor "Mcafee" for product "Webshield Smtp" and version "4.0" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Webshield Smtp Search vendor "Mcafee" for product "Webshield Smtp" | 4.1 Search vendor "Mcafee" for product "Webshield Smtp" and version "4.1" | - |
Affected
| ||||||
| Network Associates Search vendor "Network Associates" | Gauntlet Firewall Search vendor "Network Associates" for product "Gauntlet Firewall" | 4.2 Search vendor "Network Associates" for product "Gauntlet Firewall" and version "4.2" | - |
Affected
| ||||||
| Network Associates Search vendor "Network Associates" | Gauntlet Firewall Search vendor "Network Associates" for product "Gauntlet Firewall" | unix_5.0 Search vendor "Network Associates" for product "Gauntlet Firewall" and version "unix_5.0" | - |
Affected
| ||||||
| Network Associates Search vendor "Network Associates" | Gauntlet Firewall Search vendor "Network Associates" for product "Gauntlet Firewall" | unix_5.5 Search vendor "Network Associates" for product "Gauntlet Firewall" and version "unix_5.5" | - |
Affected
| ||||||
| Network Associates Search vendor "Network Associates" | Gauntlet Firewall Search vendor "Network Associates" for product "Gauntlet Firewall" | unix_6.0 Search vendor "Network Associates" for product "Gauntlet Firewall" and version "unix_6.0" | - |
Affected
| ||||||
| Pgp Search vendor "Pgp" | E-ppliance 300 Search vendor "Pgp" for product "E-ppliance 300" | 1.0 Search vendor "Pgp" for product "E-ppliance 300" and version "1.0" | - |
Affected
| ||||||
| Pgp Search vendor "Pgp" | E-ppliance 300 Search vendor "Pgp" for product "E-ppliance 300" | 1.5 Search vendor "Pgp" for product "E-ppliance 300" and version "1.5" | - |
Affected
| ||||||
| Pgp Search vendor "Pgp" | E-ppliance 300 Search vendor "Pgp" for product "E-ppliance 300" | 2.0 Search vendor "Pgp" for product "E-ppliance 300" and version "2.0" | - |
Affected
| ||||||
| Sgi Search vendor "Sgi" | Irix Search vendor "Sgi" for product "Irix" | 6.2 Search vendor "Sgi" for product "Irix" and version "6.2" | - |
Affected
| ||||||
| Sgi Search vendor "Sgi" | Irix Search vendor "Sgi" for product "Irix" | 6.3 Search vendor "Sgi" for product "Irix" and version "6.3" | - |
Affected
| ||||||
| Sgi Search vendor "Sgi" | Irix Search vendor "Sgi" for product "Irix" | 6.4 Search vendor "Sgi" for product "Irix" and version "6.4" | - |
Affected
| ||||||
| Sgi Search vendor "Sgi" | Irix Search vendor "Sgi" for product "Irix" | 6.5 Search vendor "Sgi" for product "Irix" and version "6.5" | - |
Affected
| ||||||
| Network Associates Search vendor "Network Associates" | Mcafee E-ppliance Search vendor "Network Associates" for product "Mcafee E-ppliance" | 100_series Search vendor "Network Associates" for product "Mcafee E-ppliance" and version "100_series" | - |
Affected
| ||||||
| Network Associates Search vendor "Network Associates" | Mcafee E-ppliance Search vendor "Network Associates" for product "Mcafee E-ppliance" | 120_series Search vendor "Network Associates" for product "Mcafee E-ppliance" and version "120_series" | - |
Affected
| ||||||