CVE-2000-1051
published 2000-12-11CVE-2000-1051: Directory traversal vulnerability in Allaire JRun 2.3 server allows remote attackers to read arbitrary files via the SSIFilter servlet.
PriorityP421medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.92%
77.3th percentile
Directory traversal vulnerability in Allaire JRun 2.3 server allows remote attackers to read arbitrary files via the SSIFilter servlet.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| macromedia | jrun | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (1)
exploitdb·2000-03-14
CVE-2000-0198 Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (1)
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (1)
---
// source: https://www.securityfocus.com/bid/1051/info
Atrium Software Mercur is a SMTP, POP3, and IMAP mail server. Insufficient boundary checking exists in the code that handles within the SMTP "mail from" command, the POP3 "user" command and the IMAP "login" command. The application will crash if an overly long string is used as an argument to any of these commands.
*/
#include
#include
#include
#include
#include
#include
#include
#include
void
usage (char *progname)
{
fprintf (stderr, "Usage: %s [type]\n", progname);
fprintf (stderr, " Type:\n");
fprintf (stderr, " 0 - IMAP4 (Default)\n");
fprintf (stderr, " 1 - POP3\n");
fprintf (stderr, " 2 - SMTP\n\n");
exit (1);
}
int
main (int argc, char **argv)
{
c
Exploit-DB
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (2)
exploitdb·2000-03-14
CVE-2000-0198 Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (2)
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (2)
---
source: https://www.securityfocus.com/bid/1051/info
Atrium Software Mercur is a SMTP, POP3, and IMAP mail server. Insufficient boundary checking exists in the code that handles within the SMTP "mail from" command, the POP3 "user" command and the IMAP "login" command. The application will crash if an overly long string is used as an argument to any of these commands.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19807-1.exe
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19807-2.exe
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19807-3.zip
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=97236692714978&w=2http://www.allaire.com/handlers/index.cfm?ID=17968&Method=Fullhttps://exchange.xforce.ibmcloud.com/vulnerabilities/5405http://marc.info/?l=bugtraq&m=97236692714978&w=2http://www.allaire.com/handlers/index.cfm?ID=17968&Method=Fullhttps://exchange.xforce.ibmcloud.com/vulnerabilities/5405
2000-12-11
Published