6 matches found
EUVD-2002-1053
Malware in sbrugna...
CVE-2002-1066
The CVE-2002-1066 entry concerns Jana Server (POP3) versions 1.4.6 and earlier. The issue is a buffer overflow caused by a large message index value in the RETR or DELE commands, which exceeds array limits and enables remote denial of service and possible arbitrary code execution. Affected compon...
CVE-2002-1062
The CVE-2002-1062 issue is a signedness error in Thomas Hauck Jana Server versions 2.x (up to 2.2.1) and 1.4.6 and earlier. It allows remote attackers to execute arbitrary code by sending overly long values for (1) Username, (2) Password, or (3) Hostname. The available documents identify the affe...
CVE-2002-1064
CVE-2002-1064 affects Jana Server 2.x (up to 2.2.1) and 1.4.6 and earlier. The vulnerability arises because the server generates different responses for valid versus invalid usernames, enabling remote attackers to enumerate valid user accounts. The available documents state the existence and impa...
CVE-2002-1063
CVE-2002-1063 affects Jana Server 2.x (up to 2.2.1) and 1.4.6 and earlier. The vulnerability allows remote attackers to cause a denial of service by issuing a large number of FTP PASV requests, leading to resource exhaustion and exhaustion of available FTP ports. The available connected documents...
CVE-2002-1061
The CVE-2002-1061 entry concerns multiple buffer overflows in Jana Server (JanaServer) 2.x up to 2.2.1 and 1.4.6 and earlier. The root cause is improper handling of excessively long values in protocol responses/requests, notably: (1) long HTTP major version in an HTTP GET, (2) long major version ...