CVE-2001-1359

critical

Description

Volution clients 1.0.7 and earlier attempt to contact the computer creation daemon (CCD) when an LDAP authentication failure occurs, which allows remote attackers to fully control clients via a Trojan horse Volution server.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/6672

http://www.securityfocus.com/bid/2850

http://www.caldera.com/support/security/advisories/CSSA-2001-021.0.txt

Details

Source: Mitre, NVD

Published: 2001-06-08

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H