Alibaba

CVEs (3)

• CVE-1999-0885Nov 3, 1999
  Alibaba

  Alibaba
  risk 0.03cvss —epss 0.01

  Alibaba web server allows remote attackers to execute commands via a pipe character in a malformed URL.

• CVE-2014-5976Sep 20, 2014
  Alibaba

  Alibaba
  risk 0.00cvss —epss 0.00

  The alibaba (aka com.alibaba.wireless) application 4.1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

• CVE-1999-1444Dec 31, 1999
  Alibaba

  Alibaba
  risk 0.00cvss —epss 0.01

  genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transactions that are sent in cleartext.