RSS   Vulnerabilities for 'Cobalt raq 4'   RSS

2002-12-23
 
CVE-2002-1361

 

 
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter.

 
2002-08-12
 
CVE-2002-0430

 

 
MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.

 
2002-06-25
 
CVE-2002-0348

 

 
service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long service argument.

 
 
CVE-2002-0347

 

 
Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. (dot dot) in an HTTP request.

 
 
CVE-2002-0346

 

 
Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.

 

 >>> Vendor: SUN 199 Products
Solaris
Sunos
NFS
JAVA
Cobalt raq
Rpc.ruserd
Cobalt raq 2
Cobalt raq 3i
Sparc
Web-based enterprise management
Solstice adminsuite
Forte
Netbeans developer
Openwindows
Solstice backup
Solaris isp server
Staroffice
Workshop
Java system web server
Solaris answerbook2
Hotjava browser
Iplanet certificate management system
JDK
Cluster
Chilisoft
Sun ftp
Javaserver web dev kit
Iplanet web server
Sunvts
Netdynamics
Java plug-in
JRE
Iplanet directory server
Management+center
SDK
Cobalt raq 4
One application server
Sun pci ii driver
I-runbook
One web server
Linux
Cobalt raq xtr
Sunone starter kit
Java web start
Ray server software
Solaris pc netlink
Patchpro
Enterprise authentication mechanism
One directory server
Sun fire
JMF
J2EE
Change manager
Crypto accelerator 4000
SEAM
Java system calendar server
Dtmail
Java desktop system
Java enterprise system
Java system application server
Enterprise storage manager
Storedge 3310 scsi array
Storedge 3510 fc array
Java system web proxy server
Patch manager
JSSE
Netra 1280
Sunforum
Storedge qfs
Storedge sam-qfs
Storeedge performance suite
Storeedge utilization suite
Iplanet messaging server
One messaging server
RTE
Storedge enterprise backup software
J2SE
Javamail
Storedge 6130 arrays
Java system directory proxy server
Java system directory server
One administration server
Java system communications express
Java communications services delegated administrator
Wbem services
Grid engine
Java system access manager
N1 grid engine
Java studio enterprise
N1 system manager
Storage automated diagnostic environment
Java system content delivery server
Secure global desktop
NSS
Java system messaging server
Iplanet messaging server messenger express
Java system messenger express
Chainkey java code protection
Java dynamic management kit
Java web console
See all Products for Vendor SUN


Copyright 2019, cxsecurity.com

 

Back to Top