RSS   Vulnerabilities for 'Bluedragon server'   RSS

2006-06-26
 
CVE-2006-2311

 

 
Cross-site scripting (XSS) vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to inject arbitrary web script or HTML via the filename in a request to a (1) .cfm or (2) .cfml file, which reflects the result in the default error page.

 
 
CVE-2006-2310

 

 
BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to cause a denial of service (hang) via a request for a .cfm file whose name contains an MS-DOS device name such as (1) con, (2) aux, (3) com1, and (4) com2.

 

 >>> Vendor: New atlanta communications 3 Products
Servletexec isapi
Bluedragon server
Bluedragon server jx


Copyright 2024, cxsecurity.com

 

Back to Top