CVSS: 9.3EPSS: 24%CPEs: 4EXPL: 2CVE-2008-5409 – BitDefender - Module pdf.xmd Infinite Loop Denial of Service (PoC)
https://notcve.org/view.php?id=CVE-2008-5409
09 Dec 2008 — Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to included compressed streams that were processed with the ASCIIHexDecode filter. NOTE: some of these details are obtained from third party information. Vulnerabilida... • https://www.exploit-db.com/exploits/7178 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 6%CPEs: 1EXPL: 0CVE-2007-3203
https://notcve.org/view.php?id=CVE-2007-3203
12 Jun 2007 — Stack-based buffer overflow in smtpdll.dll in the SMTP service in 602Pro LAN SUITE 2003 2003.0.03.0828 allows remote attackers to execute arbitrary code via an e-mail message with a long address. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Desbordamiento de búfer basado en pila en smtpdll.dll en el servicio SMTP en 602Pro LAN SUITE 2003 2003.0.03.0828 permite a atacantes remotos ejecutar código de su elección a través de un mensaje de co... • http://osvdb.org/37232 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2CVE-2005-1909
https://notcve.org/view.php?id=CVE-2005-1909
08 Jun 2005 — The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a "</pre><!-" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability. • http://rgod.altervista.org/602_en.html •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 3CVE-2005-1423 – software602 602 lan suite 2004 - Directory Traversal
https://notcve.org/view.php?id=CVE-2005-1423
03 May 2005 — Directory traversal vulnerability in the mail program in 602LAN SUITE 2004.0.05.0413 allows remote attackers to cause a denial of service and determine the presence of arbitrary files via .. sequences in the A parameter. • https://www.exploit-db.com/exploits/25621 •
CVSS: 8.1EPSS: 5%CPEs: 1EXPL: 2CVE-2005-0344 – Software602 602 Lan Suite 2004 2004.0.04.1221 - Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2005-0344
10 Feb 2005 — Directory traversal vulnerability in 602LAN SUITE 2004.0.04.1221 allows remote authenticated users to upload and execute arbitrary files via a .. (dot dot) in the filename parameter. • https://www.exploit-db.com/exploits/25092 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2004-1501
https://notcve.org/view.php?id=CVE-2004-1501
31 Dec 2004 — The webmail service in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) by sending a POST request with a large Content-Length value, then disconnecting without sending that amount of data. • http://marc.info/?l=bugtraq&m=109976745017459&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2004-1502
https://notcve.org/view.php?id=CVE-2004-1502
31 Dec 2004 — The Telnet proxy in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (socket exhaustion) via a Telnet request to an IP address of the proxy's network interface, which causes a loop. • http://marc.info/?l=bugtraq&m=109976745017459&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2004-0336
https://notcve.org/view.php?id=CVE-2004-0336
01 Sep 2004 — LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory. • http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2004-0335
https://notcve.org/view.php?id=CVE-2004-0335
18 Mar 2004 — LAN SUITE Web Mail 602Pro, when configured to use the "Directory browsing" feature, allows remote attackers to obtain a directory listing via an HTTP request to (1) index.html, (2) cgi-bin/, or (3) users/. • http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 2CVE-2004-0337 – Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2004-0337
18 Mar 2004 — Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML as other users via a URL to index.html, followed by a / (slash) and the desired script. NOTE: the vendor states that this bug could not be reproduced, so this issue may be REJECTed in the future. • https://www.exploit-db.com/exploits/23776 •