RSS   Vulnerabilities for 'Shambala server'   RSS

2002-10-04
 
CVE-2002-0877

 

 
Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) LIST (ls) or (2) GET commands.

 
 
CVE-2002-0876

 

 
Web server for Shambala 4.5 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request.

 
2001-10-18
 
CVE-2001-0758

 

 
Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command.

 
2000-12-19
 
CVE-2000-0954

CWE-Other
 

 
Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server.

 
 
CVE-2000-0953

 

 
Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection.

 


Copyright 2024, cxsecurity.com

 

Back to Top