CVE Tools

sambar

Networking Infrastructurecommercial

16

Cumulative CVEs

9

Monthly snapshots

#19

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting sambar.

CVE-2006-6624The FTP Server in Sambar Server 6.4 allows remote authenticated users to cause a denial of service (application crash) via a long series of "./" sequences in the SIZE command.4.0Dec 18, 2006
CVE-2004-2565Multiple directory traversal vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, when the administrative IP address restrictions have been modified from th...5.0Nov 22, 2005
CVE-2004-2564Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, allow remote attackers to inject arbitrary web script or HTML via (...4.3Nov 22, 2005
CVE-2003-1287Sambar Server before 6.0 beta 3 allows attackers with physical access to execute arbitrary code via a request with an MS-DOS device name such as com1.pl, con.pl, or aux.pl, which causes Perl to rea...4.6Nov 22, 2005
CVE-2003-1286HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interfa...7.5Nov 22, 2005
CVE-2003-1285Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) isapi/testisa.dll, (...4.3Nov 22, 2005
CVE-2005-3506Cross-site scripting (XSS) vulnerability in proxy.asp in Sambar Server 6.3 BETA 2 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the (1) Remote Pro...4.3Nov 5, 2005
CVE-2004-2086Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a...5.0May 19, 2005
CVE-2002-0737Sambar web server before 5.2 beta 1 allows remote attackers to obtain source code of server-side scripts, or cause a denial of service (resource exhaustion) via DOS devices, using a URL that ends w...6.4Apr 2, 2003
CVE-2001-1106The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user pass...7.5Apr 2, 2003
CVE-2002-0128cgitest.exe in Sambar Server 5.1 before Beta 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long argument.7.5Jun 25, 2002
CVE-2001-1292Sambar Telnet Proxy/Server allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long password.7.5May 3, 2002
CVE-2001-1010Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter.5.0Mar 9, 2002
CVE-1999-1523Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request.7.5Sep 12, 2001
CVE-1999-1178Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script.5.0Sep 12, 2001