CVE-2002-1063
published 2002-10-04CVE-2002-1063: Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to cause a denial of service (resource exhaustion) via a large…
PriorityP414medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
2.44%
82.3th percentile
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of FTP PASV requests, which consumes all available FTP ports.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| t_hauck | jana_web_server | — | — |
| t_hauck | jana_web_server | — | — |
| t_hauck | jana_web_server | — | — |
| t_hauck | jana_web_server | — | — |
| t_hauck | jana_web_server | — | — |
| t_hauck | jana_web_server | — | — |
| t_hauck | jana_web_server | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-c4g5-w4fq-ww8h: Thomas Hauck Jana Server 2
ghsa_unreviewed·2022-04-30
CVE-2002-1063 [MEDIUM] GHSA-c4g5-w4fq-ww8h: Thomas Hauck Jana Server 2
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of FTP PASV requests, which consumes all available FTP ports.
Cisco
Heap Overflow in Solaris cachefs Daemon
vendor_cisco
CVE-2003-1063 Heap Overflow in Solaris cachefs Daemon
CVE-2003-1063: Heap Overflow in Solaris cachefs Daemon
This advisory describes a vulnerability that affects Cisco products and applications that are installed on the Solaris operating system, and is based on the vulnerability of an common service within the Solaris operating system, not due to a defect of the Cisco product or application. A vulnerability in the "cachefs" program was discovered that enables an attacker to execute arbitrary code under Solaris OS. This vulnerability was publicly announced in the CERT Advisory CA-2002-11. All Cisco products and applications that are installed on Solaris OS are considered vulnerable to the underlying operating system vulnerability, unless the workaround was applied. This vulnerability is described in
CWE: CWE-119, CWE-119
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.htmlhttp://www.iss.net/security_center/static/9687.phphttp://www.securityfocus.com/bid/5325http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.htmlhttp://www.iss.net/security_center/static/9687.phphttp://www.securityfocus.com/bid/5325
2002-10-04
Published