RSS   Vulnerabilities for 'Webweaver'   RSS

2003-12-31
 
CVE-2003-1165

 

 
Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header.

 
2003-06-30
 
CVE-2003-0409

 

 
Buffer overflow in BRS WebWeaver 1.04 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP (1) POST or (2) HEAD request.

 
2003-03-31
 
CVE-2002-1546

 

 
BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence.

 
2001-06-27
 
CVE-2001-0453

 

 
Directory traversal vulnerability in BRS WebWeaver HTTP server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the (1) syshelp, (2) sysimages, or (3) scripts directories.

 
 
CVE-2001-0452

 

 
BRS WebWeaver FTP server before 0.64 Beta allows remote attackers to obtain the real pathname of the server via a "CD *" command followed by an ls command.

 


Copyright 2024, cxsecurity.com

 

Back to Top