Vulnerabilities > Software602 > 602Pro LAN Suite > 2002
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-11-23 | CVE-2004-0337 | Cross-Site Scripting vulnerability in Software602 602Pro LAN Suite Web Mail Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML as other users via a URL to index.html, followed by a / (slash) and the desired script. network software602 | 6.8 |
2004-11-23 | CVE-2004-0336 | Path Disclosure vulnerability in Software602 602Pro LAN Suite Web Mail Installation LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory. | 5.0 |
2002-12-31 | CVE-2002-2174 | Denial-Of-Service vulnerability in Software602 602Pro LAN Suite 2002 The Telnet proxy of 602Pro LAN SUITE 2002 does not restrict the number of outstanding connections to the local host, which allows remote attackers to create a denial of service (memory consumption) via a large number of connections. | 5.0 |
2002-12-31 | CVE-2002-2152 | Unspecified vulnerability in Software602 602Pro LAN Suite 2002 The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password protected. | 10.0 |
2002-12-31 | CVE-2002-1928 | Remote Security vulnerability in Software602 602Pro LAN Suite 2002 602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or ".bak" extension. | 5.0 |