94 matches found
EType EServ 2.9x - SMTP Remote Denial of Service
source: https://www.securityfocus.com/bid/6521/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user sends a large amount of data via...
EType EServ 2.9x - POP3 Remote Denial of Service
source: https://www.securityfocus.com/bid/6520/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user sends a large amount of data via...
EType EServ 2.9x - FTP Remote Denial of Service
source: https://www.securityfocus.com/bid/6519/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user sends a large amount of data via FT...
EType EServ 1.9x - NNTP Remote Denial of Service
source: https://www.securityfocus.com/bid/6522/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user sends a large amount of data via...
5 bugs
Hi I want to advice about some bugs that founded by our team DHGroup :: www.dhgroup.org: 1. Eserv/2.97 www.eserv.ru This is shareware httpftppopsmtpproxy server. Directory travel vuln was founded in http-server. Exploit: www.somehost.com/somedir/? This url will show content of directory "somedir"...
CVE-2002-0221
Etype Eserv 2.97 allows remote attackers to cause a denial of service resource exhaustion via a large number of PASV commands that consume ports 1024 through 5000, which prevents the server from accepting valid PASV...
CVE-2002-0222
Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command...
CVE-2002-0222
Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command...
CVE-2002-0221
CVE-2002-0221 affects Etype Eserv 2.97. The issue is caused by remote attackers sending a large number of PASV commands, exhausting ports 1024–5000 and preventing the server from accepting valid PASV connections, resulting in a denial of service. Exploit details and mitigation are not provided in...
CVE-2002-0222
The CVE-2002-0222 entry concerns Etype Eserv 2.97, where the PORT command enables an FTP bounce attack. An attacker can redirect data connections to arbitrary hosts, potentially affecting confidentiality, integrity, and availability. The NVD notes a network-accessible, low-complexity exploit with...
CVE-2002-0221
Etype Eserv 2.97 allows remote attackers to cause a denial of service resource exhaustion via a large number of PASV commands that consume ports 1024 through 5000, which prevents the server from accepting valid PASV...
CVE-2002-0112
Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL...
CVE-2002-0112
The CVE-2002-0112 entry affects Etype Eserv 2.97 . Affected component: password-protected file disclosure via a crafted URL containing /./ , enabling remote attackers over the network to view protected files. The available data confirms the vulnerability and impact (partial confidentiality) but p...
CVE-2002-0112
Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL...
Vulnerabilities in EServ 2.97
There are a couple of vulnerabilities in EServ 2.97. Vulnerability 1 The FTP server doesn't close the sockets that are allocated from using the PASV command. After all ports from 1024 to 5000 are listening after running a lot of PASV commands in a row no users can use passive mode anymore until t...
EServ 2.9x - Password-Protected File Access
EServ 2.9x - Password-Protected File Access source: https://www.securityfocus.com/bid/3838/info EServ is a combination Mail, News, Web, FTP and Proxy Server for Microsoft Windows 9x/NT/2000 systems. It is possible to construct a web request which is capable of accessing the contents of password...
Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability Type: File Disclosure Release Date: January 10, 2002 Product / Vendor: Eserv Mail, News, Web, FTP and Proxy Servers for Win95/98/NT/2000 http://www.eserv.ru Summary: The...
CVE-1999-1509
CVE-1999-1509 affects Etype Eserv 2.50 web server, where a directory traversal via .. in a URL allows a remote attacker to read arbitrary files on the server. This vulnerability is documented in multiple sources (NVD, CVE list, Nessus generic check) with the same root cause and impact. The connec...
CVE-1999-1509
Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. dot dot in a URL...
CVE-2000-0523
The CVE-2000-0523 entry describes a buffer overflow in the logging feature of EServ versions 2.9.2 and earlier. The vulnerability allows an attacker to execute arbitrary commands via a long MKD command. Primary documentation indicates impact as arbitrary command execution with a high-severity sco...