37 matches found
EUVD-2004-2513
Malware in sbrugna...
EUVD-2004-2511
Malware in sbrugna...
EUVD-2004-2512
Malware in sbrugna...
EUVD-2004-2510
Malware in sbrugna...
Gattaca Server 2003 Language Variable Path Exposure
No description provided by source. source: http://www.securityfocus.com/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities. By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error...
Gattaca Server 2003 Null Byte Path Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities. By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error...
Gattaca Server 2003 POP3 DoS
No description provided by source. source: http://www.securityfocus.com/bid/10728/info It is reported that Gattaca Server 2003 contains multiple denial of service vulnerabilities. These vulnerabilities allow a remote attacker to crash the application, denying service to legitimate users. Version...
Gattaca Server 2003 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10731/info Gattaca Server 2003 is reported prone to a cross-site scripting vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. A remote attacker can exploit this issue by...
Gattaca Server 2003 web.tmpl Language Variable CPU Consumption DoS
No description provided by source. source: http://www.securityfocus.com/bid/10728/info It is reported that Gattaca Server 2003 contains multiple denial of service vulnerabilities. These vulnerabilities allow a remote attacker to crash the application, denying service to legitimate users. Version...
CVE-2004-2521
Mail server in Gattaca Server 2003 1.1.10.0 allows remote attackers to perform a denial of service application crash via a large number of connections to TCP port 1 25 SMTP or 2 110 POP...
CVE-2004-2519
Gattaca Server 2003 1.1.10.0 allows remote attackers to cause a denial of service CPU consumption via directory specifiers in the LANGUAGE parameter to 1 index.tmpl and 2 web.tmpl, such as a slash "/", b backslash "", c dot ".",, d dot dot "..", and e internal slash "lang//en"...
CVE-2004-2519
The CVE-2004-2519 entry concerns Gattaca Server 2003 version 1.1.10.0. The vulnerability is a denial-of-service condition caused by how the LANGUAGE parameter handles directory specifiers in index.tmpl and web.tmpl. Examples include using: /, , ., .., and lang//en, which can lead to CPU consumpti...
CVE-2004-2521
CVE-2004-2521 affects Gattaca Server 2003 (version 1.1.10.0). The vulnerability allows a remote attacker to cause a denial-of-service (application crash) by opening a large number of connections to SMTP (port 25) or POP (port 110). The issue is documented across multiple sources (NVD, CVE list, E...
CVE-2004-2520
POP3 protocol in Gattaca Server 2003 1.1.10.0 allows remote authenticated users to cause a denial of service application crash via a large numeric value in the 1 LIST, 2 RETR, or 3 UIDL commands...
CVE-2004-2522
Cross-site scripting XSS vulnerability in web.tmpl in Gattaca Server 2003 1.1.10.0 allows remote attackers to inject arbitrary web script or HTML via the 1 template or 2 language parameter...
CVE-2004-2518
CVE-2004-2518 affects Gattaca Server 2003 (version 1.1.10.0). The issue is an information disclosure: remote attackers can cause an error message to reveal the full installation path by supplying (1) a trailing null byte (%00) in a URL or (2) an invalid LANGUAGE parameter to web.tmpl. The connect...
CVE-2004-2520
The CVE-2004-2520 entry affects Gattaca Server 2003, version 1.1.10.0. The vulnerability arises in the POP3 handling where remote authenticated users can trigger a denial of service (application crash) by sending a large numeric value in the LIST, RETR, or UIDL commands. The available documents d...
CVE-2004-2522
CVE-2004-2522 describes a cross-site scripting (XSS) vulnerability in the Gattaca Server 2003, version 1.1.10.0, within the web.tmpl component. The issue allows remote attackers to inject arbitrary web script or HTML by supplying manipulated values to either the template or language parameters. T...
CVE-2004-2518
Gattaca Server 2003 1.1.10.0 allows remote attackers to obtain sensitive information via 1 a trailing null byte "%00" to a URL or 2 an invalid LANGUAGE parameter to web.tmpl, which reveals the full installation path in an error message...
CVE-2004-2519
Gattaca Server 2003 1.1.10.0 allows remote attackers to cause a denial of service CPU consumption via directory specifiers in the LANGUAGE parameter to 1 index.tmpl and 2 web.tmpl, such as a slash "/", b backslash "", c dot ".",, d dot dot "..", and e internal slash "lang//en"...