CVE-1999-1237 — Vulnetix

CVE-1999-1237 PUBLISHED CVSS 10 CRITICAL

Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attackers to execute arbitrary commands via (1) a long username, (2) a long password, and (3) other unspecified methods.

EPSS 7.40% · 91.9th percentile

Risk Scores

CVSS 2.0

EPSS Score

7.40%

91.9th percentile

Affected Products

Vendor	Product	Versions
apache	http_server
n/a	n/a	n/a

Exploit Intelligence

19990606 Buffer overflows in smbval library (circl)
smbvalid-bo(2272) (circl)

Timeline

Jun 6, 1999 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
May 24, 2023 EPSS Score
Jul 16, 2023 EPSS Score
Sep 6, 2023 EPSS Score

References

19990606 Buffer overflows in smbval library mailing-list
smbvalid-bo(2272) vdb
https://nvd.nist.gov/vuln/detail/CVE-1999-1237 advisory

Open in Interactive Console →