CVE-2001-1359

Description

Volution clients 1.0.7 and earlier attempt to contact the computer creation daemon (CCD) when an LDAP authentication failure occurs, which allows remote attackers to fully control clients via a Trojan horse Volution server.

Affected Software
References

Software	From	Fixed in
caldera / volution	1.0	1.0.x
caldera / volution	1.0.6	1.0.6.x
caldera / volution	1.0.7	1.0.7.x

http://www.caldera.com/support/security/advisories/CSSA-2001-021.0.txt
http://www.securityfocus.com/bid/2850
https://exchange.xforce.ibmcloud.com/vulnerabilities/6672

Severity: High

CVE: CVE-2001-1359
Published: Jun 8, 2001
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CVE-2001-1359

Description

Details

CVSS v2