Buffer Overflow Vulnerability in Netwin DMailWeb CGI Program
CVE-2000-0422

Currently unrated

Key Information:

Vendor: Netwin
Status: Dmail
Vendor: CVE Published:; 4 May 2000

What is CVE-2000-0422?

The DMailWeb CGI program from Netwin has a critical vulnerability stemming from a buffer overflow issue. This flaw allows remote attackers to exploit the system by sending a specially crafted long utoken parameter, which can lead to arbitrary command execution on the server. It poses a significant risk to users of the affected DMailWeb version, making it essential for system administrators to promptly apply security patches and mitigate exposure.

References

http://marc.info/?l=bugtraq&m=95749276827558&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/1171

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Jun 14, 2000
Vulnerability published
May 4, 2000