Lucene search
K

28 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-0710

Malware in sbrugna...

7.5CVSS6.4AI score0.05964EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2002-0711

Malware in sbrugna...

7.5CVSS6.4AI score0.10424EPSS
Exploits0References4
CERT
CERT
added 2007/04/17 12:0 a.m.21 views

Microsoft Content Management Server fails to properly process crafted HTTP requests

Overview A vulnerability in the way Microsoft Content Managment Server handles HTTP requests may lead to execution of arbitrary code. Description Microsoft Content Managment Server CMS contains a vulnerability that could be exploited when it attempts to process specially crafted HTTP requests...

10CVSS7.6AI score0.45633EPSS
Exploits0References2
Prion
Prion
added 2007/04/10 9:19 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in Microsoft Content Management Server MCMS 2001 SP1 and 2002 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving HTML redirection queries, aka "Cross-site Scripting and Spoofing Vulnerability."...

4.3CVSS5.6AI score0.16186EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2007/04/10 9:19 p.m.14 views

Memory corruption

Microsoft Content Management Server MCMS 2001 SP1 and 2002 SP2 does not properly handle certain characters in a crafted HTTP GET request, which allows remote attackers to execute arbitrary code, aka the "CMS Memory Corruption Vulnerability."...

10CVSS7.5AI score0.45633EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2007/04/10 9:19 p.m.14 views

CVE-2007-0938

Microsoft Content Management Server MCMS 2001 SP1 and 2002 SP2 does not properly handle certain characters in a crafted HTTP GET request, which allows remote attackers to execute arbitrary code, aka the "CMS Memory Corruption Vulnerability."...

10CVSS7.2AI score0.45633EPSS
Exploits0References10
CVE
CVE
added 2007/04/10 9:0 p.m.61 views

CVE-2007-0939

CVE-2007-0939 is an XSS vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2. The issue arises from MCMS not fully validating input in HTML redirect queries, allowing remote attackers to inject script or HTML that runs in a user’s browser. Exploitation requires user i...

4.3CVSS5.4AI score0.16186EPSS
Exploits0References8Affected Software1
Symantec
Symantec
added 2007/04/10 12:0 a.m.15 views

Microsoft Content Management Server Remote Code Execution Vulnerability

Description Microsoft Content Management Server MCMS is prone to an arbitrary code-execution vulnerability because the software fails to properly validate user-supplied input. Exploiting this issue allows remote attackers to execute arbitrary machine code on affected computers with the privileges...

1.4AI score
Exploits0Affected Software2
securityvulns
securityvulns
added 2007/04/10 12:0 a.m.45 views

Microsoft Security Bulletin MS07-018 Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939)

Microsoft Security Bulletin MS07-018 Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution 925939 Published: April 10, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Content Management Server Impact of Vulnerability: Remote...

10CVSS0.45633EPSS
Exploits0
Symantec
Symantec
added 2007/04/10 12:0 a.m.14 views

Microsoft Content Management Server Cross-Site Scripting Vulnerability

Description Microsoft Content Management Server MCMS is prone to an unspecified cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

7.2AI score
Exploits0Affected Software2
securityvulns
securityvulns
added 2007/04/10 12:0 a.m.25 views

Microsoft Content Management Server multiple security vulnerabilities

Crossite scripting, memory corruption...

10CVSS1.9AI score0.45633EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.22 views

CVE-2003-0002

Cross-site scripting vulnerability XSS in ManualLogin.asp script for Microsoft Content Management Server MCMS 2001 allows remote attackers to execute arbitrary script via the REASONTXT parameter...

6.5AI score0.23332EPSS
Exploits0References4
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.22 views

CVE-2002-0718

Web authoring command in Microsoft Content Management Server MCMS 2001 allows attackers to authenticate and upload executable content, by modifying the upload location, aka "Program Execution via MCMS Authoring Function."...

6.7AI score0.05964EPSS
Exploits0References3
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.18 views

CVE-2002-0700

Buffer overflow in a system function that performs user authentication for Microsoft Content Management Server MCMS 2001 allows attackers to execute code in the Local System context by authenticating to a web page that calls the function, aka "Unchecked Buffer in MDAC Function Could Enable SQL...

7.7AI score0.07882EPSS
Exploits0References4
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.22 views

CVE-2002-0719

SQL injection vulnerability in the function that services for Microsoft Content Management Server MCMS 2001 allows remote attackers to execute arbitrary commands via an MCMS resource request for image files or other files...

8.3AI score0.10424EPSS
Exploits0References3
CVE
CVE
added 2003/04/02 5:0 a.m.39 views

CVE-2002-0718

CVE-2002-0718 affects Microsoft Content Management Server (MCMS) 2001. The vulnerability lies in the Web authoring function, allowing an attacker to authenticate and upload executable content by modifying the upload location (Program Execution via MCMS Authoring Function). Related data in the con...

7.5CVSS6.8AI score0.05964EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2003/04/02 5:0 a.m.45 views

CVE-2002-0700

This CVE concerns Microsoft Content Management Server (MCMS) 2001, where a buffer overflow in the Profile Service (an MDAC-related function used during user authentication) can allow an attacker to execute code in the Local System context by authenticating to a vulnerable web page. The issue is c...

7.5CVSS7.8AI score0.07882EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2003/03/03 12:0 a.m.20 views

Microsoft Content Management Server (MCMS) 2001 Multiple Remote Vulnerabilities

The remote host is running Microsoft Content Management Server. There is a buffer overflow in the Profile Service that could allow an attacker to execute arbitrary code on this host. C Tenable Network Security, Inc. Supercedes MS02-010 Thanks to Dave Aitel for the details. include"compat.inc"; if...

7.5CVSS6.6AI score0.10424EPSS
Exploits0References4
NVD
NVD
added 2003/02/07 5:0 a.m.13 views

CVE-2003-0002

Cross-site scripting vulnerability XSS in ManualLogin.asp script for Microsoft Content Management Server MCMS 2001 allows remote attackers to execute arbitrary script via the REASONTXT parameter...

6.8CVSS6.5AI score0.23332EPSS
Exploits0References4
securityvulns
securityvulns
added 2003/01/23 12:0 a.m.37 views

Microsoft Security Bulletin MS03-002: Cumulative Patch for Microsoft Content Management Server (810487)

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Cumulative Patch for Microsoft Content Management Server 810487 Date: 22 January 2003 Software: Microsoft Content Management Server 2001 Impact: Information Disclosure Max Risk:...

0.2AI score
Exploits0
Rows per page
Query Builder