Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Bigantsoft Security Vulnerabilities

cve
cve

CVE-2008-1914

Stack-based buffer overflow in the AntServer module (AntServer.exe) in BigAnt IM Server in BigAnt Messenger 2.2 allows remote attackers to execute arbitrary code via a long URI in a request to TCP port 6080. NOTE: some of these details are obtained from third party information.

8AI Score

0.73EPSS

2008-04-22 04:41 AM
22
cve
cve

CVE-2009-4660

Stack-based buffer overflow in the AntServer Module (AntServer.exe) in BigAnt IM Server 2.50 allows remote attackers to execute arbitrary code via a long GET request to TCP port 6660.

8.3AI Score

0.198EPSS

2010-03-03 08:30 PM
24
cve
cve

CVE-2009-4661

Multiple buffer overflows in BigAnt Server 2.50 SP6 and earlier allow user-assisted remote attackers to cause a denial of service (application crash) via a crafted ZIP file that is not properly handled when the victim uses the (1) Update or (2) Plug-In console menu item.

7AI Score

0.004EPSS

2010-03-03 08:30 PM
18
cve
cve

CVE-2012-6273

SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request.

8.7AI Score

0.001EPSS

2013-02-24 11:48 AM
32
cve
cve

CVE-2012-6274

BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors.

7AI Score

0.954EPSS

2013-02-24 11:48 AM
112
cve
cve

CVE-2012-6275

Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the userid component in a DUPF request.

6.8AI Score

0.867EPSS

2013-02-24 11:48 AM
107
cve
cve

CVE-2021-43430

An Access Control vulnerability exists in BigAntSoft BigAnt office messenger 5.6 via im_webserver, which could let a malicious user upload PHP Trojan files.

8.8CVSS

8.6AI Score

0.001EPSS

2022-04-07 06:15 PM
46
cve
cve

CVE-2022-23345

BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control.

7.5CVSS

7.5AI Score

0.002EPSS

2022-03-21 08:15 PM
66
cve
cve

CVE-2022-23346

BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues.

8.8CVSS

8.7AI Score

0.003EPSS

2022-03-21 08:15 PM
76
cve
cve

CVE-2022-23347

BigAnt Software BigAnt Server v5.6.06 was discovered to be vulnerable to directory traversal attacks.

7.5CVSS

7.6AI Score

0.102EPSS

2022-03-21 08:15 PM
78
cve
cve

CVE-2022-23348

BigAnt Software BigAnt Server v5.6.06 was discovered to utilize weak password hashes.

5.3CVSS

5.4AI Score

0.004EPSS

2022-03-21 08:15 PM
86
cve
cve

CVE-2022-23349

BigAnt Software BigAnt Server v5.6.06 was discovered to contain a Cross-Site Request Forgery (CSRF).

8.8CVSS

8.7AI Score

0.002EPSS

2022-03-21 08:15 PM
66
cve
cve

CVE-2022-23350

BigAnt Software BigAnt Server v5.6.06 was discovered to contain a cross-site scripting (XSS) vulnerability.

5.4CVSS

5.3AI Score

0.001EPSS

2022-03-21 08:15 PM
82
cve
cve

CVE-2022-23352

An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).

7.5CVSS

7.4AI Score

0.001EPSS

2022-03-21 08:15 PM
78
cve
cve

CVE-2022-26281

BigAnt Server v5.6.06 was discovered to contain an incorrect access control issue.

7.5CVSS

7.5AI Score

0.002EPSS

2022-04-05 02:15 AM
61