VYPR
Vendor

University of Minnesota

Products
4
CVEs
10
Across products
11
Status
Private

Products

4

Recent CVEs

10
  • CVE-2002-0371Jul 3, 2002
    risk 0.07cvss epss 0.54

    Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response.

  • CVE-2005-2772Sep 2, 2005
    risk 0.04cvss epss 0.10

    Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via (1) a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and (2) certain arguments when launching third…

  • CVE-2000-0743Oct 20, 2000
    risk 0.04cvss epss 0.13

    Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value.

  • CVE-2003-0805Oct 6, 2003
    risk 0.03cvss epss 0.05

    Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.

  • CVE-2007-4629Aug 31, 2007
    risk 0.00cvss epss 0.03

    Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name.

  • CVE-2007-4542Aug 27, 2007
    risk 0.00cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in MapServer before 4.10.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving the (1) processLine function in maptemplate.c and the (2) writeError function in mapserv.c in the…

  • CVE-2005-1853Aug 3, 2005
    risk 0.00cvss epss 0.01

    gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.

  • CVE-2004-0560Dec 31, 2004
    risk 0.00cvss epss 0.03

    Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted content of a certain size that triggers the overflow.

  • CVE-2004-0561Dec 31, 2004
    risk 0.00cvss epss 0.02

    Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.

  • CVE-1999-0124Aug 9, 1993
    risk 0.00cvss epss 0.02

    Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon.