oreilly

Top products

The 10 most recently published vulnerabilities affecting oreilly.

• CVE-2001-0394Remote manager service in Website Pro 3.0.37 allows remote attackers to cause a denial of service via a series of malformed HTTP requests to the /dyn directory.5.0Mar 9, 2002
• CVE-2001-0626O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character.7.5Mar 9, 2002
• CVE-2001-0743Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands.5.0Oct 12, 2001
• CVE-1999-1180O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat.5.0Sep 12, 2001
• CVE-2000-0622Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter.10.0May 7, 2001
• CVE-2000-0769O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader...7.5Sep 21, 2000
• CVE-2000-0623Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header.10.0Aug 3, 2000
• CVE-2000-0066WebSite Pro allows remote attackers to determine the real pathname of webdirectories via a malformed URL request.5.0Feb 4, 2000
• CVE-1999-0178Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string.7.5Sep 29, 1999
• CVE-1999-0177The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs.7.5Sep 29, 1999