4 matches found
CVE-2002-1032
CVE-2002-1032 concerns KeyFocus (KF) web server versions 1.0.5 and earlier. A buffer overflow in the handling of HTTP headers is described as allowing remote attackers to cause a denial of service and potentially execute arbitrary code. The provided sources (NVD/NVD listing) confirm the vulnerabl...
CVE-2002-1031
CVE-2002-1031 affects KeyFocus (KF) web server 1.0.2. The vulnerability permits remote attackers to list directories and read restricted files through an HTTP request containing a null byte (%00). The NVD analysis indicates network access with low attack complexity and no authentication, resultin...
CVE-2002-2403
Technical details for CVE-2002-2403 are not provided in the connected documents; the initial description includes a vulnerability summary but no additional specifics. Monitor for updates.
CVE-2007-3396
CVE-2007-3396 is an XSS vulnerability in the KeyFocus (KF) web server 3.1.0, affected code path index.wkf where an attacker can inject arbitrary script/HTML via the opsubmenu parameter. The issue arises from improper handling/validation of the opsubmenu input, enabling script execution in the vic...