Vulnerabilities > NEW Atlanta Communications > Servletexec Isapi
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-10-04 | CVE-2002-0894 | Denial Of Service vulnerability in NEW Atlanta Communications Servletexec Isapi 4.1 NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to cause a denial of service (crash) via (1) a request for a long .jsp file, or (2) a long URL sent directly to com.newatlanta.servletexec.JSP10Servlet. | 5.0 |
2002-10-04 | CVE-2002-0893 | Unspecified vulnerability in NEW Atlanta Communications Servletexec Isapi 4.1 Directory traversal vulnerability in NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to read arbitrary files via a URL-encoded request to com.newatlanta.servletexec.JSP10Servlet containing "..%5c" (modified dot-dot) sequences. | 5.0 |
2002-10-04 | CVE-2002-0892 | Path Disclosure vulnerability in NEW Atlanta Communications Servletexec Isapi 4.1 The default configuration of NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to determine the path of the web root via a direct request to com.newatlanta.servletexec.JSP10Servlet without a filename, which leaks the pathname in an error message. | 5.0 |