Vulnerabilities > Software602
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-12-10 | CVE-2008-5409 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to included compressed streams that were processed with the ASCIIHexDecode filter. | 9.3 |
2007-06-12 | CVE-2007-3203 | Remote Email Message Buffer Overflow vulnerability in Software602 602Pro LAN Suite 2003 Stack-based buffer overflow in smtpdll.dll in the SMTP service in 602Pro LAN SUITE 2003 2003.0.03.0828 allows remote attackers to execute arbitrary code via an e-mail message with a long address. | 7.5 |
2005-06-09 | CVE-2005-1909 | Unspecified vulnerability in Software602 602Lan Suite 2004 The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a "</pre><!-" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability. network software602 | 4.3 |
2005-05-03 | CVE-2005-1423 | Denial-Of-Service vulnerability in Software602 602Lan Suite 2004.0.05.0413 Directory traversal vulnerability in the mail program in 602LAN SUITE 2004.0.05.0413 allows remote attackers to cause a denial of service and determine the presence of arbitrary files via .. | 6.4 |
2005-05-02 | CVE-2005-0344 | Directory Traversal vulnerability in Software602 602Lan Suite 2004.0.04.1221 Directory traversal vulnerability in 602LAN SUITE 2004.0.04.1221 allows remote authenticated users to upload and execute arbitrary files via a .. | 5.0 |
2004-12-31 | CVE-2004-1502 | Denial-Of-Service vulnerability in 602Lan Suite The Telnet proxy in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (socket exhaustion) via a Telnet request to an IP address of the proxy's network interface, which causes a loop. | 5.0 |
2004-12-31 | CVE-2004-1501 | Denial-Of-Service vulnerability in 602Lan Suite The webmail service in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) by sending a POST request with a large Content-Length value, then disconnecting without sending that amount of data. | 5.0 |
2004-11-23 | CVE-2004-0337 | Cross-Site Scripting vulnerability in Software602 602Pro LAN Suite Web Mail Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML as other users via a URL to index.html, followed by a / (slash) and the desired script. network software602 | 6.8 |
2004-11-23 | CVE-2004-0336 | Path Disclosure vulnerability in Software602 602Pro LAN Suite Web Mail Installation LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory. | 5.0 |
2004-11-23 | CVE-2004-0335 | Remote Security vulnerability in 602Pro Lan Suite LAN SUITE Web Mail 602Pro, when configured to use the "Directory browsing" feature, allows remote attackers to obtain a directory listing via an HTTP request to (1) index.html, (2) cgi-bin/, or (3) users/. | 5.0 |