Lucene search
K

4 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Flowerfire Sawmill 5.0.21 File Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1402/info Sawmill is a site statistics package for Unix, Windows and Mac OS. A specially crafted request can disclose the first line of any world readable file for which the full pathname is known, for example /etc/passwd...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.22 views

CVE-2000-0588

SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands...

6.7AI score0.07488EPSS
Exploits1References3
CVE
CVE
added 2000/10/13 4:0 a.m.58 views

CVE-2000-0588

SawMill 5.0.21 CGI is affected by an information disclosure vulnerability where remote, unauthenticated attackers can read the first line of arbitrary files by supplying a target file in the rfcf parameter. SawMill processes the parameter contents as configuration commands, enabling path traversa...

5CVSS6.7AI score0.07488EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2000/07/19 4:0 a.m.52 views

CVE-2000-0589

SawMill 5.0.21 is affected by a weakness in how it stores passwords, enabling an attacker to decrypt the administrative password and modify the SawMill configuration. The vulnerability stems from weak encryption/hash usage, facilitating information disclosure and potential configuration tampering...

7.5CVSS6.7AI score0.03668EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder