Total
11 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-4588 | 1 Etype | 1 Eserv | 2024-11-21 | 10.0 HIGH | N/A |
Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command. | |||||
CVE-2006-2309 | 1 Etype | 1 Eserv | 2024-11-21 | 4.0 MEDIUM | N/A |
The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files. | |||||
CVE-2006-2308 | 1 Etype | 1 Eserv | 2024-11-21 | 5.5 MEDIUM | N/A |
Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the (1) CREATE, (2) SELECT, (3) DELETE, (4) RENAME, (5) COPY or (6) APPEND commands. | |||||
CVE-2003-1266 | 1 Etype | 1 Eserv | 2024-11-20 | 5.0 MEDIUM | N/A |
The (1) FTP, (2) POP3, (3) SMTP, and (4) NNTP servers in EServer 2.92 through 2.97, and possibly 2.98, allow remote attackers to cause a denial of service (crash) via a large amount of data. | |||||
CVE-2003-0290 | 1 Etype | 1 Eserv | 2024-11-20 | 5.0 MEDIUM | N/A |
Memory leak in eServ 2.9x allows remote attackers to cause a denial of service (memory exhaustion) via a large number of connections, whose memory is not freed when the connection is terminated. | |||||
CVE-2002-0222 | 1 Etype | 1 Eserv | 2024-11-20 | 7.5 HIGH | N/A |
Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command. | |||||
CVE-2002-0221 | 1 Etype | 1 Eserv | 2024-11-20 | 5.0 MEDIUM | N/A |
Etype Eserv 2.97 allows remote attackers to cause a denial of service (resource exhaustion) via a large number of PASV commands that consume ports 1024 through 5000, which prevents the server from accepting valid PASV. | |||||
CVE-2002-0112 | 1 Etype | 1 Eserv | 2024-11-20 | 5.0 MEDIUM | N/A |
Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL. | |||||
CVE-2000-0907 | 1 Etype | 1 Eserv | 2024-11-20 | 7.5 HIGH | N/A |
EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO and MAIL FROM commands. | |||||
CVE-2000-0523 | 1 Etype | 1 Eserv | 2024-11-20 | 10.0 HIGH | N/A |
Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command. | |||||
CVE-1999-1509 | 1 Etype | 1 Eserv | 2024-11-20 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a URL. |