Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Cobalt Raq 2 Security Vulnerabilities

cve
cve

CVE-2002-0430

MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to...

7AI Score

0.0004EPSS

2002-08-12 04:00 AM
27
cve
cve

CVE-2002-0346

Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2)...

7AI Score

0.041EPSS

2002-06-25 04:00 AM
23
cve
cve

CVE-2002-0347

Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. (dot dot) in an HTTP...

7AI Score

0.006EPSS

2002-06-25 04:00 AM
22
cve
cve

CVE-2002-0348

service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long service...

7.9AI Score

0.016EPSS

2002-06-25 04:00 AM
21
cve
cve

CVE-1999-1530

cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to view or modify data located at another virtual site on the same...

6.4AI Score

0.001EPSS

2002-03-09 05:00 AM
31
cve
cve

CVE-2000-0320

Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 1023 characters long and ends in...

6.6AI Score

0.003EPSS

2000-10-13 04:00 AM
29
cve
cve

CVE-2000-0117

The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibly admin...

6.5AI Score

0.0004EPSS

2000-10-13 04:00 AM
30
cve
cve

CVE-2000-0442

Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl...

6.4AI Score

0.005EPSS

2000-07-12 04:00 AM
32
cve
cve

CVE-2000-0431

Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify...

6.6AI Score

0.036EPSS

2000-07-12 04:00 AM
27
cve
cve

CVE-2000-0234

The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess...

6.9AI Score

0.006EPSS

2000-06-02 04:00 AM
59
cve
cve

CVE-1999-0831

Denial of service in Linux syslogd via a large number of...

6.9AI Score

0.002EPSS

2000-01-18 05:00 AM
24
cve
cve

CVE-1999-0722

The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software...

7.2AI Score

0.014EPSS

2000-01-04 05:00 AM
21