Vulnerabilities > T Hauck
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-10-04 | CVE-2002-1066 | Denial Of Service vulnerability in T. Hauck Jana Server POP3 Invalid Message Index Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a (1) RETR or (2) DELE command to the POP3 server, which exceeds the array limits and allows a buffer overflow attack. | 7.5 |
2002-10-04 | CVE-2002-1065 | Remote Security vulnerability in Jana Web Server Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing. | 7.5 |
2002-10-04 | CVE-2002-1064 | Unspecified vulnerability in T. Hauck Jana web Server Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, generates different responses for valid and invalid usernames, which allows remote attackers to identify valid users on the server. | 5.0 |
2002-10-04 | CVE-2002-1063 | Denial Of Service vulnerability in T. Hauck Jana Server FTP Server PASV Mode Port Exhaustion Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of FTP PASV requests, which consumes all available FTP ports. | 5.0 |
2002-10-04 | CVE-2002-1062 | Buffer Overflow vulnerability in T. Hauck Jana web Server Signedness error in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to execute arbitrary code via long (1) Username, (2) Password, or (3) Hostname entries. | 7.5 |
2002-10-04 | CVE-2002-1061 | Buffer Overflow vulnerability in T. Hauck Jana web Server Multiple buffer overflows in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP GET request with a long major version number, (2) an HTTP GET request to the HTTP proxy on port 3128 with a long major version number, (3) a long OK reply from a POP3 server, and (4) a long SMTP server response. | 7.5 |
2001-08-14 | CVE-2001-0558 | Unspecified vulnerability in T. Hauck Jana web Server T. | 5.0 |
2001-08-14 | CVE-2001-0557 | Directory Traversal vulnerability in T. Hauck Jana web Server 1.0J/1.45/2.0Beta1 T. | 5.0 |
1999-10-08 | CVE-1999-1083 | Directory Traversal vulnerability in T. Hauck Jana web Server 1.0/1.45/1.46 Directory traversal vulnerability in Jana proxy web server 1.45 allows remote attackers to ready arbitrary files via a .. | 5.0 |
1999-10-08 | CVE-1999-1082 | Directory Traversal vulnerability in Jana Webserver Directory traversal vulnerability in Jana proxy web server 1.40 allows remote attackers to ready arbitrary files via a "......" (modified dot dot) attack. | 5.0 |