VYPR

Aolserver

by AOL

CVEs (7)

  • CVE-2001-0205May 3, 2001
    risk 0.05cvss epss 0.24

    Directory traversal vulnerability in AOLserver 3.2 and earlier allows remote attackers to read arbitrary files by inserting "..." into the requested pathname, a modified .. (dot dot) attack.

  • CVE-2009-4494Jan 13, 2010
    risk 0.04cvss epss 0.09

    AOLserver 4.5.1 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal…

  • CVE-2001-1067Aug 31, 2001
    risk 0.04cvss epss 0.16

    Buffer overflow in AOLserver 3.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via an HTTP request with a long Authorization header.

  • CVE-2002-0587Jun 18, 2002
    risk 0.00cvss epss 0.03

    Buffer overflow in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to cause a denial of service or execute arbitrary code via the Error or Notice parameters.

  • CVE-2002-0586Jun 18, 2002
    risk 0.00cvss epss 0.03

    Format string vulnerability in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to execute arbitrary code via the Error or Notice parameters.

  • CVE-2002-0100Mar 25, 2002
    risk 0.00cvss epss 0.02

    AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file.

  • CVE-2001-0314Jun 2, 2001
    risk 0.00cvss epss 0.02

    Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL in a link.