Vulnerabilities (CVE)

Filtered by vendor Bigantsoft Subscribe
Filtered by product Bigant Im Message Server
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-6275 1 Bigantsoft 1 Bigant Im Message Server 2024-11-21 10.0 HIGH N/A
Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the userid component in a DUPF request.
CVE-2012-6274 1 Bigantsoft 1 Bigant Im Message Server 2024-11-21 5.0 MEDIUM N/A
BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors.
CVE-2012-6273 1 Bigantsoft 1 Bigant Im Message Server 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request.