Vulnerabilities > 4D > Webstar > 4.0

DATE	CVE	VULNERABILITY TITLE	RISK
2004-11-23	CVE-2004-0081	OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. network low complexity cisco symantec hp avaya freebsd openbsd redhat sco apple 4d checkpoint lite neoteris novell openssl sgi stonesoft vmware bluecoat securecomputing dell tarantella sun	5.0
2004-11-23	CVE-2004-0079	NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. network low complexity cisco symantec hp avaya redhat freebsd openbsd apple sco 4d checkpoint dell lite neoteris novell openssl sgi stonesoft tarantella vmware bluecoat securecomputing sun CWE-476	7.5
2004-07-27	CVE-2004-0698	Local Security vulnerability in WebSTAR 4D WebSTAR 5.3.2 and earlier allows local users to read and modify arbitrary files via a symlink attack. local low complexity 4d	3.6
2004-07-27	CVE-2004-0697	Information Disclosure vulnerability in WebSTAR Unknown vulnerability in 4D WebSTAR 5.3.2 and earlier allows remote attackers to read the php.ini configuration file and possibly obtain sensitive information. network low complexity 4d	5.0
2004-07-27	CVE-2004-0696	Remote Information Disclosure vulnerability in 4D WebStar The ShellExample.cgi script in 4D WebSTAR 5.3.2 and earlier allows remote attackers to list arbitrary directories via a URL with the desired path and a "*" (asterisk) character. network low complexity 4d	5.0
2004-07-27	CVE-2004-0695	Remote Security vulnerability in WebSTAR Stack-based buffer overflow in the FTP service for 4D WebSTAR 5.3.2 and earlier allows remote attackers to execute arbitrary code via a long FTP command. network low complexity 4d	7.5