{"vuid":"VU#124352","idnumber":"124352","name":"HP-UX kermit contains local buffer overflow that allows denial-of-service","keywords":["HP-UX","kermit","buffer overflow","denial of service","DoS"],"overview":"The HP-UX version of kermit contains a buffer overflow that allows local users to prevent other users from running kermit.","clean_desc":"Kermit is a file transfer protocol that has been implemented by Hewlett-Packard for use on their systems. On December 21, 2000, HP released a security bulletin regarding a local buffer overflow that affects the kermit client present in HP-UX versions 10.01, 10.10, 10.20, and 11.00.","impact":"This vulnerability allows local users to create a denial of service attack that prevents other users from running the kermit program.","resolution":"HP has provided patches for each of the affected versions; please see the vendor section of this document for further details.","workarounds":"","sysaffected":"","thanks":"","author":"This document was written by Jeffrey P. Lanza.","public":["h","t","t","p",":","/","/","w","w","w",".","s","e","c","u","r","i","t","y","f","o","c","u","s",".","c","o","m","/","b","i","d","/","2","1","7","0"],"cveids":["CVE-2001-0085"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2001-01-11T02:18:37Z","publicdate":"2000-12-21T00:00:00Z","datefirstpublished":"2001-01-18T00:17:47Z","dateupdated":"2001-07-18T20:15:37Z","revision":14,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"20","cam_exploitation":"10","cam_internetinfrastructure":"3","cam_population":"5","cam_impact":"3","cam_easeofexploitation":"10","cam_attackeraccessrequired":"10","cam_scorecurrent":"0.928125","cam_scorecurrentwidelyknown":"0.928125","cam_scorecurrentwidelyknownexploited":"1.209375","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":0.928125,"vulnote":null}