Mirabilis CVE - OpenCVE

Filtered by vendor Mirabilis Subscribe

Total 27 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2000-1078	1 Mirabilis	1 Icq Web Front	2024-11-20	5.0 MEDIUM	N/A
ICQ Web Front HTTPd allows remote attackers to cause a denial of service by requesting a URL that contains a "?" character.
CVE-2000-0564	1 Mirabilis	1 Icq	2024-11-20	5.0 MEDIUM	N/A
The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter.
CVE-2000-0046	1 Mirabilis	1 Icq	2024-11-20	7.5 HIGH	N/A
Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message.
CVE-1999-1440	1 Mirabilis	1 Icq 98a	2024-11-20	5.1 MEDIUM	N/A
Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenames, which could allow attackers to send an executable file with a long name that contains so many spaces that the .exe extension is not displayed, which could make the user believe that the file is safe to open from the client.
CVE-1999-1418	1 Mirabilis	1 Icq Web Front	2024-11-20	5.0 MEDIUM	N/A
ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("404 Forbidden") versus when a file does not exist ("404 not found").
CVE-1999-1289	1 Mirabilis	1 Icq	2024-11-20	7.5 HIGH	N/A
ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration.
CVE-1999-0474	1 Mirabilis	1 Icq	2024-11-20	5.0 MEDIUM	N/A
The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory.

Vulnerabilities (CVE)