CVE-2001-0636
Last modified
CVE-2001-0636 is a vulnerability of currently unknown severity. Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in the collector (cle.exe) component of SilentRunner 2.0 via traffic containing long passwords, or (2) execute arbitrary commands via long HTTP queries in the Knowledge Browser component in SilentRunner 2.0 and 2.0.1. NOTE: It is highly likely that this candidate will be split into multiple candidates.. EPSS estimates a 2.59% chance of exploitation in the next 30 days.
Description
Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in the collector (cle.exe) component of SilentRunner 2.0 via traffic containing long passwords, or (2) execute arbitrary commands via long HTTP queries in the Knowledge Browser component in SilentRunner 2.0 and 2.0.1. NOTE: It is highly likely that this candidate will be split into multiple candidates.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Raytheon | Silentrunner | 2.0 |
| Raytheon | Silentrunner | 2.0.1 |
References
- http://xforce.iss.net/alerts/advise91.phpVendor Advisory
- http://xforce.iss.net/alerts/advise91.phpVendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2001-0636?
How severe is CVE-2001-0636?
How do I fix CVE-2001-0636?
Are you affected by CVE-2001-0636?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST