RSS   Podatności dla 'Miniportal'   RSS

2002-05-29
 
CVE-2002-0261

 
 
Directory traversal vulnerability in InstantServers MiniPortal 1.1.5 and earlier allows remote authenticated users to read arbitrary files via a ... (modified dot dot) in the GET command.

 
 
CVE-2002-0260

 
 
Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility.

 
 
CVE-2002-0259

 
 
InstantServers MiniPortal 1.1.5 and earlier stores sensitive login and account data in plaintext in (1) .pwd files in the miniportal/apache directory, or (2) mplog.txt, which could allow local users to gain privileges.

 

 >>> Vendor: Instantservers inc. 2 Produkty
Miniportal
Ismail

Copyright 2024, cxsecurity.com

 

Back to Top