Sambar Server Security Vulnerabilities and Issues — Sambar Server CVE List

Lucene search

SambarSambar Server

6 matches found

CVE•added 2000/03/22 5:0 a.m.•53 views

CVE-2000-0213

The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via shell metacharacters.

5CVSS7.2AI score0.07351EPSS

CVE•added 2002/03/09 5:0 a.m.•45 views

CVE-2001-1010

Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter.

5CVSS6.7AI score0.05053EPSS

CVE•added 2005/05/19 4:0 a.m.•39 views

CVE-2004-2086

Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a long query parameter.

5CVSS8.2AI score0.67666EPSS

CVE•added 2005/11/22 2:0 a.m.•39 views

CVE-2004-2565

Multiple directory traversal vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, when the administrative IP address restrictions have been modified from the default, allow remote authenticated users to read arbitrary files via (1) a ".." (dot dot backslash)...

5CVSS7.1AI score0.07652EPSS

CVE•added 2000/11/14 5:0 a.m.•38 views

CVE-2000-0835

search.dll Sambar ISAPI Search utility in Sambar Server 4.4 Beta 3 allows remote attackers to read arbitrary directories by specifying the directory in the query parameter.

5CVSS6.7AI score0.0363EPSS

CVE•added 2001/09/12 4:0 a.m.•37 views

CVE-1999-1178

Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script.

5CVSS6.4AI score0.00961EPSS