Oreilly : Security Vulnerabilities, CVEs, Published In 2000
O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe.
Max CVSS
7.5
EPSS Score
0.37%
Published
2000-10-20
Updated
2016-10-18
Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header.
Max CVSS
10.0
EPSS Score
0.25%
Published
2000-07-17
Updated
2008-09-10
Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter.
Max CVSS
10.0
EPSS Score
2.45%
Published
2000-07-19
Updated
2017-10-10
WebSite Pro allows remote attackers to determine the real pathname of webdirectories via a malformed URL request.
Max CVSS
5.0
EPSS Score
0.47%
Published
2000-01-13
Updated
2022-08-17
4 vulnerabilities found