Vulnerabilities > Imatix > Xitami > 2.4d7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-25 | CVE-2008-6519 | USE of Externally-Controlled Format String vulnerability in Imatix Xitami Format string vulnerability in Xitami Web Server 2.2a through 2.5c2, and possibly other versions, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via format string specifiers in a Long Running Web Process (LRWP) request, which triggers incorrect logging code involving the sendfmt function in the SMT kernel. | 10.0 |
2001-07-02 | CVE-2001-0391 | Unspecified vulnerability in Imatix Xitami 2.4D7/2.5D4 Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux directory. | 5.0 |