CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0414
https://notcve.org/view.php?id=CVE-2003-0414
11 Jun 2003 — The installation of Sun ONE Application Server 7.0 for Windows 2000/XP creates a statefile with world-readable permissions, which allows local users to gain privileges by reading a plaintext password in the statefile. La instalación de Sun ONE Application Server 7.0 para Windows 2000/XP crea un fichero de estado con permisos de lectura para todo el mundo, lo que permite a usuarios locales ganar privilegios leyendo contraseñas en texto plano en el fichero de estado. • http://marc.info/?l=bugtraq&m=105409846029475&w=2 •
CVSS: 9.8EPSS: 3%CPEs: 2EXPL: 0CVE-2002-0387
https://notcve.org/view.php?id=CVE-2002-0387
18 Mar 2003 — Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server before 6.5 allows remote attackers to execute arbitrary code via a long HTTP request URL. Desbordamiento de búfer en el conector gxnsapi6.dll del Módulo Conector de Sun ONE Application Server anterior a 6.5 permite a atacantes remotos ejecutar código arbitrario mediante una URL larga en una petición HTTP. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/52022 •
CVSS: 7.5EPSS: 7%CPEs: 26EXPL: 2CVE-2002-1042 – iPlanet Web Server 4.1 - Search Component File Disclosure
https://notcve.org/view.php?id=CVE-2002-1042
31 Aug 2002 — Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter. • https://www.exploit-db.com/exploits/21603 •