Vulnerabilities > Etype > Eserv > 3.25
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-10-15 | CVE-2008-4588 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Etype Eserv 3.0/3.25/3.26 Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command. | 10.0 |
2006-06-02 | CVE-2006-2309 | Input Validation vulnerability in Etype Eserv 3.0/3.25 The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files. | 4.0 |
2006-06-02 | CVE-2006-2308 | Input Validation vulnerability in Etype Eserv 3.0/3.25 Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the (1) CREATE, (2) SELECT, (3) DELETE, (4) RENAME, (5) COPY or (6) APPEND commands. | 5.5 |