RSS   Podatności dla 'Openserver'   RSS

2020-12-18
 
CVE-2020-25495

CWE-79
 
 
A reflected Cross-site scripting (XSS) vulnerability in Xinuo (formerly SCO) Openserver version 5 and 6 allows remote attackers to inject arbitrary web script or HTML tag via the parameter 'section'.

 
 
CVE-2020-25494

CWE-88
 
 
Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to cgi-bin/printbook.

 
2004-08-18
 
CVE-2004-0230

CWE-Other
 
 
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.

 

 >>> Vendor: Xinuos 2 Produkty
Unixware
Openserver

Copyright 2024, cxsecurity.com

 

Back to Top