2 matches found
CVE-2009-4657
CVE-2009-4657 affects the Xerver 4.32 administrator package. The vulnerability allows remote attackers to alter application settings because authentication is not required when connecting to the application on port 32123, demonstrated by setting the action option to wizardStep1. The vulnerability...
CVE-2009-4658
CVE-2009-4658 affects Xerver HTTP Server 4.32. The issue is a denial-of-service (daemon crash) caused by a non-numeric web port assignment in the management interface. The description notes that this can be leveraged by non-authenticated attackers using CVE-2009-4657. Connected references also de...