4 matches found
CVE-2000-0240
CVE-2000-0240 affects vqSoft vqServer. Multiple sources (NVD, CVE list, OPENVAS/Nessus, PT-2000-1222) describe a directory traversal style flaw where an attacker can read arbitrary files by using a URL containing a "/........../" segment, a variation of a ". ." (dot-dot) path traversal. Affected ...
CVE-2000-0241
The CVE-2000-0241 entry concerns vqSoft vqServer, where passwords and other sensitive data are stored in cleartext in the server.cfg file. This exposed data can let an attacker gain privileges if they can read the configuration file. The available connected documentation confirms the issue, but d...
CVE-2000-0766
The CVE-2000-0766 entry concerns the vqSoft vqServer (1.4.49) buffer overflow vulnerability. According to the sources, an attacker can trigger a buffer overflow by sending a long HTTP GET request, potentially causing denial of service or privilege elevation. Public references from CVE records and...
CVE-2002-0731
The CVE-2002-0731 entry describes a Cross-site scripting vulnerability in the demonstration scripts for vqServer. The issue arises when an attacker can craft a link with script code in the arguments to demo scripts (e.g., respond.pl), enabling remote script execution in the victim’s browser via s...