CVE-2001-1103 — HIGH (7.5) — White Hats Nepal

Q: What is CVE-2001-1103?

CVE-2001-1103 is a vulnerability with a CVSS score of 7.5 (HIGH). FTP Voyager ActiveX control before 8.0, when it is marked as safe for scripting (the default) or if allowed by the IObjectSafety interface, allows remote attackers to execute arbitrary commands.

Q: How severe is CVE-2001-1103?

CVE-2001-1103 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2001-1103?

Check the references section above for vendor advisories and patch information. Affected products include: Rhinosoft Ftp Voyager.

Vulnerability Description

FTP Voyager ActiveX control before 8.0, when it is marked as safe for scripting (the default) or if allowed by the IObjectSafety interface, allows remote attackers to execute arbitrary commands.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Rhinosoft	Ftp Voyager	<= 8.0

References

http://www.kb.cert.org/vuls/id/320944PatchThird Party AdvisoryUS Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/7119
http://www.kb.cert.org/vuls/id/320944PatchThird Party AdvisoryUS Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/7119

FAQ

What is CVE-2001-1103?

CVE-2001-1103 is a vulnerability with a CVSS score of 7.5 (HIGH). FTP Voyager ActiveX control before 8.0, when it is marked as safe for scripting (the default) or if allowed by the IObjectSafety interface, allows remote attackers to execute arbitrary commands.

How severe is CVE-2001-1103?

CVE-2001-1103 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2001-1103?

Check the references section above for vendor advisories and patch information. Affected products include: Rhinosoft Ftp Voyager.