Easerver Security Vulnerabilities and Issues — Easerver CVE List

Lucene search

SybaseEaserver

3 matches found

CVE•added 2005/07/19 4:0 a.m.•45 views

CVE-2005-2297

Stack-based buffer overflow in TreeAction.do in Sybase EAServer 4.2.5 through 5.2 allows remote authenticated users to execute arbitrary code via a large javascript parameter.

4.6CVSS7.6AI score0.71529EPSS

CVE•added 2012/08/15 9:55 p.m.•37 views

CVE-2012-4340

Cross-site scripting (XSS) vulnerability in Sybase EAServer before 6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00225EPSS

CVE•added 2006/04/19 4:6 p.m.•34 views

CVE-2006-1829

EAServer Manager in Sybase EAServer 5.2 and 5.3 allows remote authenticated users, possibly guests, to obtain password credentials of arbitrary users via unspecified vectors involving (1) connection caches, (2) open password prompts, and (3) stored custom connection profiles.

4CVSS6.5AI score0.0042EPSS