VYPR

Miniportal

by Instantservers Inc.

CVEs (3)

  • CVE-2002-0259May 29, 2002
    risk 0.00cvss epss 0.00

    InstantServers MiniPortal 1.1.5 and earlier stores sensitive login and account data in plaintext in (1) .pwd files in the miniportal/apache directory, or (2) mplog.txt, which could allow local users to gain privileges.

  • CVE-2002-0260May 29, 2002
    risk 0.00cvss epss 0.03

    Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility.

  • CVE-2002-0261May 29, 2002
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in InstantServers MiniPortal 1.1.5 and earlier allows remote authenticated users to read arbitrary files via a ... (modified dot dot) in the GET command.