16 matches found
EUVD-2001-0229
Malware in sbrugna...
EUVD-2001-0623
Malware in sbrugna...
EUVD-2001-0624
Malware in sbrugna...
Sun Java System ASP Server Detection
The remote service is an ASP Server, part of Sun Java System Active Server Pages or an older variant such as Chili!Soft ASP, which provides a web server with ASP Active Server Pages functionality. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
CVE-2001-0634
Sun Chili!Soft ASP has weak permissions on various configuration files, enabling a local attacker to gain additional privileges and cause a denial of service. Affected product: Sun Chili!Soft ASP. Root cause: insecure/weak permissions on configuration files. CVSS v2 base score 7.2 (HIGH) with loc...
CVE-2001-0634
Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service...
CVE-2001-0633
Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' dot dot attack in the sample script 'codebrws.asp'...
CVE-2001-0632
Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges...
CVE-2001-0634
Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service...
CVE-2001-0632
Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX are affected by CVE-2001-0632 due to a default admin username/password created during default installation, enabling a remote attacker to gain additional privileges. The NVD entry assigns a CVSS v2 base score of 7.5 (HIGH) with network access, no authe...
CVE-2001-0633
Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' dot dot attack in the sample script 'codebrws.asp'...
CVE-2001-0632
Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges...
CVE-2001-0229
Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited mode, which could allow attackers to gain privileges via malicious scripts...
CVE-2001-0229
Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited mode, which could allow attackers to gain privileges via malicious scripts...
CVE-2001-0229
The CVE affects Chili!Soft ASP for Linux before 3.6. In inherited mode it missets group privileges, enabling local privilege escalation via malicious scripts. Impact is described as complete confidentiality, integrity, and availability losses. No explicit remediation steps are documented in the p...
Advisory: Chili!Soft ASP Multiple Vulnerabilities
Author: Stan Bubrouski [email protected] Date: February 20, 2001 Package: Chili!Soft ASP Versions affected: 3.5.2 and possibly previous versions. Severity: 1 A remote user could potentially view sensative information and take remote control of the server. 2 The installer installs a default usernam...