94 matches found
CVE-2000-0523
Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command...
CVE-2000-0907
EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO and MAIL FROM commands...
CVE-2000-0907
EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO and MAIL FROM commands...
CVE-2000-0907
CVE-2000-0907 affects EServ 2.92 Build 2982. Remote attackers can exploit long HELO and MAIL FROM commands to cause a denial of service and possibly execute arbitrary commands. The CVSS v2 base score is 7.5 (HIGH), with network access and low attack complexity. The description explicitly states t...
MDMA Advisory #6: EServ Logging Heap Overflow Vulnerability
MDMA Advisory 6 by Andrew Lewis aka. Wizdumb EServ Logging Heap Overflow Vulnerability EServ has problems handling long strings in its logging, which leads it to have a remotely exploitable heap overflow. The following code, written in Java coz it's my language of choice, demonstrates the...
mdma-6.eserv.txt
MDMA Advisory 6 by Andrew Lewis aka. Wizdumb EServ Logging Heap Overflow Vulnerability EServ has problems handling long strings in its logging, which leads it to have a remotely exploitable heap overflow. The following code, written in Java coz it's my language of choice, demonstrates the...
CVE-2000-0523
Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command...
Etype Eserv 2.9.2 - Logging Buffer Overflow
Etype Eserv 2.9.2 - Logging Buffer Overflow source: https://www.securityfocus.com/bid/1315/info EType EServ is a combination mail, news, HTTP, FTP, and proxy server. The logging mechanism in EType EServ is vulnerable to a heap buffer overflow that could allow remote attackers to execute arbitrary...
Etype Eserv 2.9.2 - Logging Buffer Overflow
source: https://www.securityfocus.com/bid/1315/info EType EServ is a combination mail, news, HTTP, FTP, and proxy server. The logging mechanism in EType EServ is vulnerable to a heap buffer overflow that could allow remote attackers to execute arbitrary code on the server. The overflow occurs whe...
Eserv GET Request Traversal Arbitrary File Access
The version of Eserv running on the remote host is vulnerable to a directory traversal attack. It is possible to read arbitrary files on the server by prepending ../../ or ....\ in front of the file name. A remote attacker could exploit this to read arbitrary files on the server, which could be...
Eserv.txt
---------- Forwarded message ---------- Date: Thu, 4 Nov 1999 18:26:52 -0600 From: [email protected] To: [email protected] Subject: BOUNCE [email protected]: Approval required: Eserv 2.50 Web interface Server Directory Traversal Vulnerability Product: Eserv/2.50 is the...
CVE-1999-1509
Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. dot dot in a URL...
etype eserv 2.50 - Directory Traversal
source: https://www.securityfocus.com/bid/773/info Etype's Eserv product is designed to be a one-source internet connectivity solution, incorporating mail, web, ftp, and proxy servers into one package. The web server will allow remote browsing of the entire filesystem by the usage of ../ strings ...
etype eserv 2.50 - Directory Traversal
etype eserv 2.50 - Directory Traversal source: https://www.securityfocus.com/bid/773/info Etype's Eserv product is designed to be a one-source internet connectivity solution, incorporating mail, web, ftp, and proxy servers into one package. The web server will allow remote browsing of the entire...