Enterprise Validation Authority@3.5 Security Vulnerabilities and Issues — Enterprise Validation Authority@3.5 CVE List

Lucene search

ValicertEnterprise Validation Authority3.5

3 matches found

CVE•added 2002/02/02 5:0 a.m.•44 views

CVE-2001-0948

Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's description, which is executed when the certificate is viewed.

7.5CVSS7.3AI score0.02441EPSS

CVE•added 2002/02/02 5:0 a.m.•36 views

CVE-2001-0949

Buffer overflows in forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 allows remote attackers to execute arbitrary code via long arguments to the parameters (1) Mode, (2) Certificate_File, (3) useExpiredCRLs, (4) listenLength, (5) maxThr...

7.5CVSS8.1AI score0.0446EPSS

CVE•added 2002/02/02 5:0 a.m.•34 views

CVE-2001-0947

Forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to determine the real pathname of the server by requesting an invalid extension, which produces an error page that includes the path.

7.5CVSS7AI score0.00741EPSS