Page 4 of 24 results (0.003 seconds)

CVSS: 5.0EPSS: 1%CPEs: 3EXPL: 2

Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server. • https://www.exploit-db.com/exploits/20135 http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html http://download.nai.com/products/licensed/pgp/hf3pki10.txt http://www.osvdb.org/1489 http://www.securityfocus.com/bid/1537 https://exchange.xforce.ibmcloud.com/vulnerabilities/5066 •

CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 0

The default installation of VirusScan 4.5 and NetShield 4.5 has insecure permissions for the registry key that identifies the AutoUpgrade directory, which allows local users to execute arbitrary commands by replacing SETUP.EXE in that directory with a Trojan Horse. • http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0007&L=ntbugtraq&F=&S=&P=2753 http://www.osvdb.org/1458 http://www.osvdb.org/4200 http://www.securityfocus.com/bid/1458 https://exchange.xforce.ibmcloud.com/vulnerabilities/5177 •

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

Net Tools PKI Server allows remote attackers to cause a denial of service via a long HTTP request. • ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt http://archives.neohapsis.com/archives/bugtraq/2000-06/0166.html http://www.osvdb.org/4352 http://www.securityfocus.com/bid/1363 https://exchange.xforce.ibmcloud.com/vulnerabilities/4744 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files. • ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt http://archives.neohapsis.com/archives/bugtraq/2000-06/0166.html http://www.osvdb.org/4353 http://www.securityfocus.com/bid/1364 https://exchange.xforce.ibmcloud.com/vulnerabilities/4743 •

CVSS: 10.0EPSS: 5%CPEs: 7EXPL: 1

Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands. • https://www.exploit-db.com/exploits/19949 http://archives.neohapsis.com/archives/bugtraq/2000-05/0249.html http://www.osvdb.org/322 http://www.pgp.com/jump/gauntlet_advisory.asp http://www.securityfocus.com/bid/1234 http://www.tis.com/support/cyberadvisory.html •