Aolserver
by AOL
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-0205 | 0.05 | — | 0.24 | May 3, 2001 | Directory traversal vulnerability in AOLserver 3.2 and earlier allows remote attackers to read arbitrary files by inserting "..." into the requested pathname, a modified .. (dot dot) attack. | |||
| CVE-2009-4494 | 0.04 | — | 0.09 | Jan 13, 2010 | AOLserver 4.5.1 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal… | |||
| CVE-2001-1067 | 0.04 | — | 0.16 | Aug 31, 2001 | Buffer overflow in AOLserver 3.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via an HTTP request with a long Authorization header. | |||
| CVE-2002-0587 | 0.00 | — | 0.03 | Jun 18, 2002 | Buffer overflow in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to cause a denial of service or execute arbitrary code via the Error or Notice parameters. | |||
| CVE-2002-0586 | 0.00 | — | 0.03 | Jun 18, 2002 | Format string vulnerability in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to execute arbitrary code via the Error or Notice parameters. | |||
| CVE-2002-0100 | 0.00 | — | 0.02 | Mar 25, 2002 | AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file. | |||
| CVE-2001-0314 | 0.00 | — | 0.02 | Jun 2, 2001 | Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL in a link. |
- CVE-2001-0205May 3, 2001risk 0.05cvss —epss 0.24
Directory traversal vulnerability in AOLserver 3.2 and earlier allows remote attackers to read arbitrary files by inserting "..." into the requested pathname, a modified .. (dot dot) attack.
- CVE-2009-4494Jan 13, 2010risk 0.04cvss —epss 0.09
AOLserver 4.5.1 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal…
- CVE-2001-1067Aug 31, 2001risk 0.04cvss —epss 0.16
Buffer overflow in AOLserver 3.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via an HTTP request with a long Authorization header.
- CVE-2002-0587Jun 18, 2002risk 0.00cvss —epss 0.03
Buffer overflow in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to cause a denial of service or execute arbitrary code via the Error or Notice parameters.
- CVE-2002-0586Jun 18, 2002risk 0.00cvss —epss 0.03
Format string vulnerability in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to execute arbitrary code via the Error or Notice parameters.
- CVE-2002-0100Mar 25, 2002risk 0.00cvss —epss 0.02
AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file.
- CVE-2001-0314Jun 2, 2001risk 0.00cvss —epss 0.02
Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL in a link.