What is CVE-2001-1320?

CVE-2001-1320 is a vulnerability in N/a. Published 2002-05-03.

Is CVE-2001-1320 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2001-1320

Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via exceptional BER encodings (possibly buffer overflows), as demonstrated by the PROTOS LDAPv3 test suit…

EPSS: 0.667 (98.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

CA-2001-18 (x_refsource_CERT, third-party-advisory)
www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/ (x_refsource_MISC)
L-116 (government-resource, third-party-advisory, x_refsource_CIAC)
VU#765256 (x_refsource_CERT-VN, third-party-advisory)
www.kb.cert.org/vuls/id/JPLA-4WESNK (x_refsource_CONFIRM)
pgp-keyserver-ldap-bo(6900) (vdb-entry, x_refsource_XF)
3046 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2001-1320?: CVE-2001-1320 is a vulnerability in N/a. Published 2002-05-03.
Is CVE-2001-1320 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.