Vulnerabilities > Ncsa
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-02-02 | CVE-2011-0738 | Improper Input Validation vulnerability in multiple products MyProxy 5.0 through 5.2, as used in Globus Toolkit 5.0.0 through 5.0.2, does not properly verify the (1) hostname or (2) identity in the X.509 certificate for the myproxy-server, which allows remote attackers to spoof the server and conduct man-in-the-middle (MITM) attacks via a crafted certificate when executing (a) myproxy-logon or (b) myproxy-get-delegation. | 4.3 |
| 2005-05-02 | CVE-2005-0469 | Remote Buffer Overflow vulnerability in Multiple Vendor Telnet Client LINEMODE Sub-Options Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands. | 7.5 |
| 2005-05-02 | CVE-2005-0468 | Buffer Overflow vulnerability in Ncsa Telnet C Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated. | 7.5 |
| 1997-09-23 | CVE-1999-0267 | Unspecified vulnerability in Ncsa Httpd 1.3 Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution. | 7.5 |
| 1997-07-15 | CVE-1999-0146 | Unspecified vulnerability in Ncsa Campas and Servers The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file. | 7.5 |
| 1995-02-17 | CVE-1999-0235 | Unspecified vulnerability in Ncsa web Server 1.3/1.4/1.4.1 Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access. | 10.0 |
| 1991-09-10 | CVE-1999-1090 | Unspecified vulnerability in Ncsa Telnet The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files. | 7.5 |