Lucene search

K
SambarSambar Server5.0

6 matches found

CVE
CVE
added 2002/05/03 4:0 a.m.47 views

CVE-2001-1292

Sambar Telnet Proxy/Server allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long password.

7.5CVSS8.2AI score0.02752EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.45 views

CVE-2001-1010

Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter.

5CVSS6.7AI score0.05053EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.41 views

CVE-2001-1106

The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwords by cracking the key or modifying a copy of the sambar program to call the decryption procedure.

7.5CVSS6.8AI score0.01461EPSS
CVE
CVE
added 2005/11/22 2:0 a.m.40 views

CVE-2003-1287

Sambar Server before 6.0 beta 3 allows attackers with physical access to execute arbitrary code via a request with an MS-DOS device name such as com1.pl, con.pl, or aux.pl, which causes Perl to read the code from the associated device.

4.6CVSS7.5AI score0.00139EPSS
CVE
CVE
added 2005/11/22 2:0 a.m.36 views

CVE-2003-1285

Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) isapi/testisa.dll, (2) testcgi.exe, (3) environ.pl, (4) the query parameter to samples/search.dll, (5) the price parameter...

4.3CVSS5.8AI score0.01386EPSS
CVE
CVE
added 2005/11/22 2:0 a.m.31 views

CVE-2003-1286

HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.

7.5CVSS7.1AI score0.09764EPSS