5 matches found
CVE-2004-2565
Multiple directory traversal vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, when the administrative IP address restrictions have been modified from the default, allow remote authenticated users to read arbitrary files via 1 a ".." dot dot backslash i...
Sambar Server 6.1 Beta 2 - 'showini.asp' Arbitrary File Access
source: https://www.securityfocus.com/bid/10444/info Sambar Server is reportedly prone to multiple vulnerabilities. These issues may allow an attacker to access sensitive files and carry out directory traversal and cross-site scripting attacks. These issues require an attacker to have...
CVE-2003-1285
Multiple cross-site scripting XSS vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to 1 isapi/testisa.dll, 2 testcgi.exe, 3 environ.pl, 4 the query parameter to samples/search.dll, 5 the price parameter to...
Sambar Server Multiple CGI Environment Variable Disclosure
The remote web server appears to be Sambar Server and makes available the 'environ.pl' and/or 'testcgi.exe' CGI scripts. These are included by default and reveal the server's installation directory along with other information that could prove useful to an attacker. Note that this version is also...
Fw: Multiple Vulnerabilties in Sambar Server
----- Original Message ----- From: NGSSoftware Insight Security Research Advisory NISR To: [email protected] Sent: Monday, April 01, 2002 12:07 PM Subject: Multiple Vulnerabilties in Sambar Server NGSSoftware Insight Security Research Advisory Name: Sambar Server 5.0 server.exe Systems...