14 matches found
EUVD-2002-0343
Malware in sbrugna...
EUVD-2002-0344
Malware in sbrugna...
CVE-2002-1361
CVE-2002-1361 affects Sun Cobalt RaQ4 with the Security Hardening Patch (SHP) installed. The overflow.cgi CGI script did not properly filter input, allowing a POST to set the email parameter to shell metacharacters and enabling remote code execution with superuser privileges. Public sources descr...
CVE-2002-1361
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP Security Hardening Patch installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter...
CVE-2002-1361
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP Security Hardening Patch installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter...
CERT Advisory CA-2002-35 Vulnerability in RaQ 4 Servers
-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2002-35 Vulnerability in RaQ 4 Servers Original release date: December 11, 2002 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Sun Cobalt RaQ 4 Server Appliances with the...
CVE-2002-0346
Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to 1 service.cgi or 2 alert.cgi...
CVE-2002-0348
service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long service argument...
CVE-2002-0346
Technical details about CVE-2002-0346 are not publicly provided in the supplied documents. The connected EUVD/OpenVAS entries reference the CVE but do not disclose affected products, versions, root cause, or remediation. Monitor for updates.
CVE-2002-0347
The CVE-2002-0347 entry concerns a directory traversal vulnerability in the Cobalt RAQ 4 web server. An attacker can leverage a .. (dot dot) in an HTTP request to read files, including password-protected files, and potentially access files outside the web root. The issue is described in the NVD e...
CVE-2002-0348
service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long service argument...
CVE-2002-0346
Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to 1 service.cgi or 2 alert.cgi...
CVE-2002-0348
CVE-2002-0348: The vulnerability affects Cobalt RAQ 4, where service.cgi is susceptible to a long argument leading to remote denial of service and potential arbitrary code execution. The available sources describe the issue framework (remote access via network, low complexity, partial confidentia...
CVE-2002-0347
Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. dot dot in an HTTP request...