CVE-2001-0434 - The LogDataListToFile ActiveX function used in (1) Knowledge Center and (2) Back web components of C

CVE-2001-0434

Summary

The LogDataListToFile ActiveX function used in (1) Knowledge Center and (2) Back web components of Compaq Presario computers allows remote attackers to modify arbitrary files and cause a denial of service.

References

http://ftp.support.compaq.com/patches/.new/html/SSRT0716-01.shtml
https://exchange.xforce.ibmcloud.com/vulnerabilities/6355

Vulnerable Configurations

cpe:2.3:a:compaq:presario:*:*:*:*:*:*:*:*
cpe:2.3:a:compaq:presario:*:*:*:*:*:*:*:*

CVSS

Base:	6.4 (as of 10-10-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:P/A:P

refmap via4

compaq	SSRT0716
xf	compaq-activex-dos(6355)

Last major update

10-10-2017 - 01:29

Published

02-07-2001 - 04:00

Last modified

10-10-2017 - 01:29