Easy Chat Server Security Vulnerabilities and Issues — Easy Chat Server CVE List

Lucene search

EchatserverEasy Chat Server

5 matches found

CVE•added 2020/03/05 8:15 p.m.•62 views

CVE-2019-20502

An issue was discovered in EFS Easy Chat Server 3.1. There is a buffer overflow via a long body2.ghp message parameter.

7.5CVSS7.7AI score0.00489EPSS

CVE•added 2023/01/06 10:15 p.m.•38 views

CVE-2022-44939

Efs Software Easy Chat Server Version 3.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL.

7.8CVSS7.9AI score0.00026EPSS

CVE•added 2017/06/12 6:29 a.m.•36 views

CVE-2017-9544

There is a remote stack-based buffer overflow (SEH) in register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1. By sending an overly long username string to registresult.htm for registering the user, an attacker may be able to execute arbitrary code.

9.8CVSS9.8AI score0.48335EPSS

CVE•added 2017/06/12 3:29 p.m.•35 views

CVE-2017-9557

register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1 allows remote attackers to discover passwords by sending the username parameter in conjunction with an empty password parameter, and reading the HTML source code of the response.

7.5CVSS7.7AI score0.00305EPSS

CVE•added 2017/06/12 6:29 a.m.•30 views

CVE-2017-9543

register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1 allows remote attackers to reset arbitrary passwords via a crafted POST request to registresult.htm.

7.5CVSS7.4AI score0.00231EPSS