Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext

Overview Air Messenger LAN Server AMLServer stores usernames and passwords in plaintext. Description AMLServer for windows is a paging gateway that allows users on a TCP/IP LAN to communicate with mobile devices such as phones and pagers. Access to AMLServer's services is protected by a user...

CVE-2001-0788

Internet Software Solutions Air Messenger LAN Server AMLServer 3.4.2 allows remote attackers to obtain an absolute path for the server directory by viewing the Location header...

CVE-2001-0785

Directory traversal in Webpaging interface in Internet Software Solutions Air Messenger LAN Server AMLServer 3.4.2 allows allows remote attackers to read arbitrary files via a .. dot dot attack...

CVE-2001-0786

Vulnerability summary (CVE-2001-0786) : Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores usernames and passwords in plaintext in the pUser.Dat file. The issue affects the authentication data, enabling potential privacy disclosure if the password file is exposed. The N...

CVE-2001-0788

CVE-2001-0788 affects Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2. Remote attackers can obtain the server's absolute directory path by viewing the Location header; no remediation details are provided in the supplied documents.

CVE-2001-0785

Affects Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2. The Webpaging interface contains a directory-traversal flaw that lets remote attackers read arbitrary files via a .. path. Root cause: directory traversal in the Webpaging interface. Impact: partial confidentiality lo...

Multiple Vulnerabilities In AMLServer

Strumpf Noir Society Advisories ! Public release ! -- -= Multiple Vulnerabilities In AMLServer =- Release date: Monday, June 18, 2001 Introduction: Air Messenger LAN Server is a paging gateway server for MS Windows that allows you to send and recieve messages to a paging network over a TCP/IP LAN...