Vulnerabilities > Imatix > Xitami > 2.4d7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-03-25 | CVE-2008-6519 | USE of Externally-Controlled Format String vulnerability in Imatix Xitami Format string vulnerability in Xitami Web Server 2.2a through 2.5c2, and possibly other versions, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via format string specifiers in a Long Running Web Process (LRWP) request, which triggers incorrect logging code involving the sendfmt function in the SMT kernel. | 10.0 |
| 2001-07-02 | CVE-2001-0391 | Unspecified vulnerability in Imatix Xitami 2.4D7/2.5D4 Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux directory. | 5.0 |