Listserv
by Lsoft
CVEs (6)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2000-0425 | 0.04 | — | 0.07 | May 3, 2000 | Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands. | ||
| CVE-2006-1044 | 0.02 | — | 0.25 | Mar 7, 2006 | Multiple buffer overflows in LISTSERV 14.3 and 14.4, including LISTSERV Lite and HPO, with the web archive interface enabled, allow remote attackers to execute arbitrary code via unknown attack vectors related to the WA CGI. NOTE: technical details will be released after the grace period has ended on 20060603. | ||
| CVE-2010-2723 | 0.00 | — | 0.00 | Jul 13, 2010 | Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | ||
| CVE-2005-1773 | 0.00 | — | 0.02 | May 31, 2005 | Multiple unknown vulnerabilities in L-Soft LISTSERV 14.3, 1.8e, and 1.8d allow remote attackers to execute arbitrary code or cause a denial of service. NOTE: this candidate may be SPLIT in the future when more precise technical details become available. | ||
| CVE-2000-0632 | 0.00 | — | 0.01 | Jul 17, 2000 | Buffer overflow in the web archive component of L-Soft Listserv 1.8d and earlier allows remote attackers to execute arbitrary commands via a long query string. | ||
| CVE-1999-0252 | 0.00 | — | 0.01 | Jan 1, 1997 | Buffer overflow in listserv allows arbitrary command execution. |
- CVE-2000-0425May 3, 2000risk 0.04cvss —epss 0.07
Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands.
- CVE-2006-1044Mar 7, 2006risk 0.02cvss —epss 0.25
Multiple buffer overflows in LISTSERV 14.3 and 14.4, including LISTSERV Lite and HPO, with the web archive interface enabled, allow remote attackers to execute arbitrary code via unknown attack vectors related to the WA CGI. NOTE: technical details will be released after the grace period has ended on 20060603.
- CVE-2010-2723Jul 13, 2010risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
- CVE-2005-1773May 31, 2005risk 0.00cvss —epss 0.02
Multiple unknown vulnerabilities in L-Soft LISTSERV 14.3, 1.8e, and 1.8d allow remote attackers to execute arbitrary code or cause a denial of service. NOTE: this candidate may be SPLIT in the future when more precise technical details become available.
- CVE-2000-0632Jul 17, 2000risk 0.00cvss —epss 0.01
Buffer overflow in the web archive component of L-Soft Listserv 1.8d and earlier allows remote attackers to execute arbitrary commands via a long query string.
- CVE-1999-0252Jan 1, 1997risk 0.00cvss —epss 0.01
Buffer overflow in listserv allows arbitrary command execution.