CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0298
https://notcve.org/view.php?id=CVE-2002-0298
ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service (crash) via certain HTTP GET requests containing (1) a %2e%2e (encoded dot-dot), (2) several /../ (dot dot) sequences, (3) a missing URI, or (4) several ../ in a URI that does not begin with a / (slash) character. ScriptEase MiniWeb Server 0.95 permite a atacantes remotos causar una denegación de servicio (caida) mediante ciertas peticiones HTTP GET conteniendo .. (punto punto) codificado en la url, varias secuencias /../, faltando una URI o varios ../ en una URI que con comienza con un caracter / (barra) • http://marc.info/?l=bugtraq&m=101424439220931&w=2 http://www.securityfocus.com/bid/4145 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0323
https://notcve.org/view.php?id=CVE-2002-0323
comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL. • http://marc.info/?l=bugtraq&m=101465709621105&w=2 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0297
https://notcve.org/view.php?id=CVE-2002-0297
Buffer overflow in ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long URL in an HTTP request. Desbordamiento de búfer en ScriptEase MiniWeb Server 0.95 permite a atacantes remotos causar una denegación de servicio (caida) y posiblemente ejecutar código arbitrario mediante una URL larga en una petición HTTP. • http://marc.info/?l=bugtraq&m=101415883727615&w=2 http://www.securityfocus.com/bid/4128 •