Vulnerabilities > Software602 > 602Pro LAN Suite
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-06-12 | CVE-2007-3203 | Remote Email Message Buffer Overflow vulnerability in Software602 602Pro LAN Suite 2003 Stack-based buffer overflow in smtpdll.dll in the SMTP service in 602Pro LAN SUITE 2003 2003.0.03.0828 allows remote attackers to execute arbitrary code via an e-mail message with a long address. | 7.5 |
| 2004-11-23 | CVE-2004-0337 | Cross-Site Scripting vulnerability in Software602 602Pro LAN Suite Web Mail Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML as other users via a URL to index.html, followed by a / (slash) and the desired script. network software602 | 6.8 |
| 2004-11-23 | CVE-2004-0336 | Path Disclosure vulnerability in Software602 602Pro LAN Suite Web Mail Installation LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory. | 5.0 |
| 2004-11-23 | CVE-2004-0335 | Remote Security vulnerability in 602Pro Lan Suite LAN SUITE Web Mail 602Pro, when configured to use the "Directory browsing" feature, allows remote attackers to obtain a directory listing via an HTTP request to (1) index.html, (2) cgi-bin/, or (3) users/. | 5.0 |
| 2002-12-31 | CVE-2002-2174 | Denial-Of-Service vulnerability in Software602 602Pro LAN Suite 2002 The Telnet proxy of 602Pro LAN SUITE 2002 does not restrict the number of outstanding connections to the local host, which allows remote attackers to create a denial of service (memory consumption) via a large number of connections. | 5.0 |
| 2002-12-31 | CVE-2002-2152 | Unspecified vulnerability in Software602 602Pro LAN Suite 2002 The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password protected. | 10.0 |
| 2002-12-31 | CVE-2002-1928 | Remote Security vulnerability in Software602 602Pro LAN Suite 2002 602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or ".bak" extension. | 5.0 |
| 2001-06-18 | CVE-2001-0448 | Denial-Of-Service vulnerability in 602Pro Lan Suite Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service via an HTTP GET HTTP request to the aux directory, and possibly other directories with legacy DOS device names. | 5.0 |
| 2001-06-18 | CVE-2001-0447 | Denial of Service vulnerability in Software602 602Pro LAN Suite 2000A2000.0.1.34 Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request containing "%2e" (dot dot) characters. | 7.5 |
| 2001-01-09 | CVE-2000-1115 | Unspecified vulnerability in Software602 602Pro LAN Suite Buffer overflow in remote web administration component (webprox.dll) of 602Pro LAN SUITE before 2000.0.1.33 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. | 7.5 |