RSS   Vulnerabilities for 'Bigant im message server'   RSS

2013-02-24
 
CVE-2012-6275

 

 
Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the userid component in a DUPF request.

 
 
CVE-2012-6274

 

 
BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors.

 
 
CVE-2012-6273

 

 
SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request.

 

 >>> Vendor: Bigantsoft 5 Products
Bigant messenger
Bigant server
Bigant im message server
Bigant messenger server
Bigant office messenger 5


Copyright 2024, cxsecurity.com

 

Back to Top