Vulnerabilities > T Hauck

DATE CVE VULNERABILITY TITLE RISK
2002-10-04 CVE-2002-1066 Denial Of Service vulnerability in T. Hauck Jana Server POP3 Invalid Message Index
Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a (1) RETR or (2) DELE command to the POP3 server, which exceeds the array limits and allows a buffer overflow attack.
network
low complexity
t-hauck
7.5
2002-10-04 CVE-2002-1065 Remote Security vulnerability in Jana Web Server
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing.
network
low complexity
t-hauck
7.5
2002-10-04 CVE-2002-1064 Unspecified vulnerability in T. Hauck Jana web Server
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, generates different responses for valid and invalid usernames, which allows remote attackers to identify valid users on the server.
network
low complexity
t-hauck
5.0
2002-10-04 CVE-2002-1063 Denial Of Service vulnerability in T. Hauck Jana Server FTP Server PASV Mode Port Exhaustion
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of FTP PASV requests, which consumes all available FTP ports.
network
low complexity
t-hauck
5.0
2002-10-04 CVE-2002-1062 Buffer Overflow vulnerability in T. Hauck Jana web Server
Signedness error in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to execute arbitrary code via long (1) Username, (2) Password, or (3) Hostname entries.
network
low complexity
t-hauck
7.5
2002-10-04 CVE-2002-1061 Buffer Overflow vulnerability in T. Hauck Jana web Server
Multiple buffer overflows in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP GET request with a long major version number, (2) an HTTP GET request to the HTTP proxy on port 3128 with a long major version number, (3) a long OK reply from a POP3 server, and (4) a long SMTP server response.
network
low complexity
t-hauck
7.5
2001-08-14 CVE-2001-0558 Unspecified vulnerability in T. Hauck Jana web Server
T.
network
low complexity
t-hauck
5.0
2001-08-14 CVE-2001-0557 Directory Traversal vulnerability in T. Hauck Jana web Server 1.0J/1.45/2.0Beta1
T.
network
low complexity
t-hauck
5.0
1999-10-08 CVE-1999-1083 Directory Traversal vulnerability in T. Hauck Jana web Server 1.0/1.45/1.46
Directory traversal vulnerability in Jana proxy web server 1.45 allows remote attackers to ready arbitrary files via a ..
network
low complexity
t-hauck
5.0
1999-10-08 CVE-1999-1082 Directory Traversal vulnerability in Jana Webserver
Directory traversal vulnerability in Jana proxy web server 1.40 allows remote attackers to ready arbitrary files via a "......" (modified dot dot) attack.
network
low complexity
t-hauck
5.0