MyProxy 5.0 through 5.2, as used in Globus Toolkit 5.0.0 through 5.0.2, does not properly verify the (1) hostname or (2) identity in the X.509 certificate for the myproxy-server, which allows remote attackers to spoof the server and conduct man-in-the-middle (MITM) attacks via a crafted certificate when executing (a) myproxy-logon or (b) myproxy-get-delegation.
Max CVSS
4.3
EPSS Score
0.40%
Published
2011-02-02
Updated
2017-08-17
Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.
Max CVSS
7.5
EPSS Score
92.11%
Published
2005-05-02
Updated
2017-10-11
Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated.
Max CVSS
7.5
EPSS Score
93.76%
Published
2005-05-02
Updated
2017-10-11
The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files.
Max CVSS
7.5
EPSS Score
0.42%
Published
1991-09-10
Updated
2017-10-10
Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution.
Max CVSS
7.5
EPSS Score
0.60%
Published
1997-09-23
Updated
2022-08-17
Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access.
Max CVSS
10.0
EPSS Score
0.19%
Published
1995-02-17
Updated
2022-08-17
The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file.
Max CVSS
7.5
EPSS Score
6.36%
Published
1997-07-15
Updated
2018-05-03
phf CGI program allows remote command execution through shell metacharacters.
Max CVSS
10.0
EPSS Score
29.63%
Published
1996-03-20
Updated
2024-01-26
8 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!