Page 2 of 13 results (0.004 seconds)

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

11 Jun 2003 — Sun ONE Application Server 7.0 for Windows 2000/XP does not log the complete URI of a long HTTP request, which could allow remote attackers to hide malicious activities. Sun ONE Application Server 7.0 para Windows 2000/XP no registra la URI completa de una petición HTTP larga, lo que podría permitir a atacantes remotos esconder actividades maliciosas. • http://marc.info/?l=bugtraq&m=105409846029475&w=2 •

CVSS: 9.8EPSS: 3%CPEs: 2EXPL: 0

18 Mar 2003 — Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server before 6.5 allows remote attackers to execute arbitrary code via a long HTTP request URL. Desbordamiento de búfer en el conector gxnsapi6.dll del Módulo Conector de Sun ONE Application Server anterior a 6.5 permite a atacantes remotos ejecutar código arbitrario mediante una URL larga en una petición HTTP. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/52022 •

CVSS: 7.5EPSS: 8%CPEs: 26EXPL: 2

31 Aug 2002 — Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter. • https://www.exploit-db.com/exploits/21603 •