Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

University Of Minnesota Security Vulnerabilities

cve
cve

CVE-2000-0743

Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value.

8.2AI Score

0.005EPSS

2000-10-20 04:00 AM
28
cve
cve

CVE-2002-0371

Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response.

7.8AI Score

0.583EPSS

2002-07-03 04:00 AM
37
3
cve
cve

CVE-2003-0805

Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.

7.5AI Score

0.006EPSS

2003-10-06 04:00 AM
28
cve
cve

CVE-2004-0560

Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted content of a certain size that triggers the overflow.

7.8AI Score

0.013EPSS

2005-01-19 05:00 AM
28
cve
cve

CVE-2004-0561

Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.

7.2AI Score

0.013EPSS

2005-01-19 05:00 AM
25
cve
cve

CVE-2005-1853

gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.

8.9AI Score

0.0004EPSS

2022-10-03 04:22 PM
22
cve
cve

CVE-2005-2772

Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via (1) a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and (2) certain arguments when launching third party programs such ...

7.5AI Score

0.017EPSS

2005-09-02 11:03 PM
30
cve
cve

CVE-2007-4542

Multiple cross-site scripting (XSS) vulnerabilities in MapServer before 4.10.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving the (1) processLine function in maptemplate.c and the (2) writeError function in mapserv.c in the mapserv CGI program.

5.5AI Score

0.009EPSS

2007-08-27 09:17 PM
32
cve
cve

CVE-2007-4629

Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name.

7.5AI Score

0.019EPSS

2007-08-31 01:17 AM
28