Vulnerabilities > Pragma Systems

DATE CVE VULNERABILITY TITLE RISK
2008-01-09 CVE-2008-0153 Resource Management Errors vulnerability in Pragma Systems Pragma Telnetserver 7.0.4.589
telnetd.exe in Pragma TelnetServer 7.0.4.589 allows remote attackers to cause a denial of service (process crash and resource exhaustion) via a crafted TELOPT PRAGMA LOGON telnet option, which triggers a NULL pointer dereference.
network
low complexity
pragma-systems CWE-399
5.0
2006-05-17 CVE-2006-2421 Remote Buffer Overflow vulnerability in Pragma FortressSSH SSH_MSG_KEXINIT
Stack-based buffer overflow in Pragma FortressSSH 4.0.7.20 allows remote attackers to execute arbitrary code via long SSH_MSG_KEXINIT messages, which may cause an overflow when being logged.
network
low complexity
pragma-systems
7.5
2005-06-07 CVE-2005-1969 Unspecified vulnerability in Pragma Systems Pragma Telnetserver 6.0
Cross-site scripting (XSS) vulnerability in Pragma Systems Telnetserver 6.0 allows remote attackers to inject arbitrary web script or HTML, and hide activities in log files, via a "<!--" (HTML comment) in a session.
network
pragma-systems
4.3
2002-12-23 CVE-2002-1360 Improper Input Validation vulnerability in multiple products
Multiple SSH2 servers and clients do not properly handle strings with null characters in them when the string length is specified by a length field, which could allow remote attackers to cause a denial of service or possibly execute arbitrary code due to interactions with the use of null-terminated strings as implemented using languages such as C, as demonstrated by the SSHredder SSH protocol test suite.
10.0
2002-12-23 CVE-2002-1359 Improper Input Validation vulnerability in multiple products
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite.
10.0
2002-12-23 CVE-2002-1358 Improper Input Validation vulnerability in multiple products
Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
10.0
2002-12-23 CVE-2002-1357 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
10.0
2001-06-06 CVE-2001-1263 Denial of Service vulnerability in Pragma Systems Interaccess 4.0Build5
telnet95.exe in Pragma InterAccess 4.0 build 5 allows remote attackers to cause a denial of service (crash) via a large number of characters to port 23, possibly due to a buffer overflow.
network
low complexity
pragma-systems
5.0
2000-10-20 CVE-2000-0708 Unspecified vulnerability in Pragma Systems Telnetserver 2000
Buffer overflow in Pragma Systems TelnetServer 2000 version 4.0 allows remote attackers to cause a denial of service via a long series of null characters to the rexec port.
network
low complexity
pragma-systems
5.0
2000-02-24 CVE-2000-0212 Unspecified vulnerability in Pragma Systems Interaccess Telnetd Server 4.0
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
network
low complexity
pragma-systems
5.0