Sambar Server Security Vulnerabilities and Issues — Sambar Server CVE List

Lucene search

SambarSambar Server

5 matches found

CVE•added 2002/05/03 4:0 a.m.•47 views

CVE-2001-1292

Sambar Telnet Proxy/Server allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long password.

7.5CVSS8.2AI score0.02752EPSS

CVE•added 2003/04/02 5:0 a.m.•41 views

CVE-2001-1106

The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwords by cracking the key or modifying a copy of the sambar program to call the decryption procedure.

7.5CVSS6.8AI score0.01461EPSS

CVE•added 2002/06/25 4:0 a.m.•33 views

CVE-2002-0128

cgitest.exe in Sambar Server 5.1 before Beta 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long argument.

7.5CVSS7.5AI score0.08653EPSS

CVE•added 2001/09/12 4:0 a.m.•32 views

CVE-1999-1523

Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request.

7.5CVSS8.1AI score0.01075EPSS

CVE•added 2005/11/22 2:0 a.m.•31 views

CVE-2003-1286

HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.

7.5CVSS7.1AI score0.09764EPSS