CVE-2002-1434
published 2003-04-11CVE-2002-1434: Multiple cross-site scripting (XSS) vulnerabilities in the Web mail module of Kerio MailServer 5.0 allow remote attackers to execute HTML script as other users…
PriorityP421medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
4.31%
89.9th percentile
Multiple cross-site scripting (XSS) vulnerabilities in the Web mail module of Kerio MailServer 5.0 allow remote attackers to execute HTML script as other users via certain URLs.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kerio | kerio_mailserver | — | — |
| kerio | kerio_mailserver | — | — |
| kerio | kerio_mailserver | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
GPL SQL Slammer Worm propagation attempt
suricata·2010-09-23
CVE-2002-0649 GPL SQL Slammer Worm propagation attempt
GPL SQL Slammer Worm propagation attempt
Rule: alert udp $EXTERNAL_NET any -> $HOME_NET 1434 (msg:"GPL SQL Slammer Worm propagation attempt"; content:"|04|"; depth:1; content:"|81 F1 03 01 04 9B 81 F1 01|"; content:"sock"; content:"send"; reference:bugtraq,5310; reference:bugtraq,5311; reference:cve,2002-0649; reference:nessus,11214; reference:url,vil.nai.com/vil/content/v_99992.htm; classtype:misc-attack; sid:2102003; rev:9; metadata:created_at 2010_09_23, cve CVE_2002_0649, confidence Medium, signature_severity Informational, updated_at 2019_07_26;)
Suricata
GPL WORM Slammer Worm propagation attempt OUTBOUND
suricata·2010-09-23
CVE-2002-0649 GPL WORM Slammer Worm propagation attempt OUTBOUND
GPL WORM Slammer Worm propagation attempt OUTBOUND
Rule: alert udp $HOME_NET any -> $EXTERNAL_NET 1434 (msg:"GPL WORM Slammer Worm propagation attempt OUTBOUND"; content:"|04|"; depth:1; content:"|81 F1 03 01 04 9B 81 F1|"; content:"sock"; content:"send"; reference:bugtraq,5310; reference:bugtraq,5311; reference:cve,2002-0649; reference:nessus,11214; reference:url,vil.nai.com/vil/content/v_99992.htm; classtype:misc-attack; sid:2102004; rev:8; metadata:created_at 2010_09_23, cve CVE_2002_0649, confidence Medium, signature_severity Informational, updated_at 2019_07_26;)
Exploit-DB
Microsoft SQL Server - Resolution Overflow (MS02-039) (Metasploit)
exploitdb·2010-04-30
CVE-2002-0649 Microsoft SQL Server - Resolution Overflow (MS02-039) (Metasploit)
Microsoft SQL Server - Resolution Overflow (MS02-039) (Metasploit)
---
##
# $Id: ms02_039_slammer.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Microsoft SQL Server Resolution Overflow',
'Description' => %q{
This is an exploit for the SQL Server 2000 resolution
service buffer overflow. This overflow is triggered by
sending a udp packet to port 1434 which starts with 0x04 and
is followed by long string terminating with a colon and a
number. This module should work against any vulnerable SQL
Server 2000
Exploit-DB
Kerio MailServer 5.0/5.1 Web Mail - Multiple Cross-Site Scripting Vulnerabilities
exploitdb·2002-08-19
CVE-2002-1434 Kerio MailServer 5.0/5.1 Web Mail - Multiple Cross-Site Scripting Vulnerabilities
Kerio MailServer 5.0/5.1 Web Mail - Multiple Cross-Site Scripting Vulnerabilities
---
source: https://www.securityfocus.com/bid/5507/info
Reportedly, Kerio Mailserver is vulnerable to cross site scripting attacks. The vulnerability is present in Kerio Mailserver's web mail component.
An attacker may exploit this vulnerability by causing a victim user to follow a malicious link. Exploitation may result in the compromise of authentication data, or in script code taking actions as the authenticated user.
*** The vendor has stated that this is not a vulnerability.
*** Proof of concept has been provided.
http://keriowebmail/alert('THisIsREAL0wned')
http://keriowebmail/passwdalert('VERYVULNERABLE')
Exploit-DB
Microsoft SQL Server 2000 - User Authentication Remote Buffer Overflow
exploitdb·2002-08-06·CVSS 2.1
CVE-2002-1123 [LOW] Microsoft SQL Server 2000 - User Authentication Remote Buffer Overflow
Microsoft SQL Server 2000 - User Authentication Remote Buffer Overflow
---
source: https://www.securityfocus.com/bid/5411/info
A vulnerability has been discovered in Microsoft SQL Server that could make it possible for remote attackers to gain access to target hosts.
It is possible for an attacker to cause a buffer overflow condition on the vulnerable SQL server with a malformed login request. This may allow a remote attacker to execute arbitrary code as the SQL Server process.
This vulnerability reportedly occurs even before authentication can proceed.
##
#
# this script tests for the "You had me at hello" overflow
# in MSSQL (tcp/1433)
# Copyright Dave Aitel (2002)
# Bug found by: Dave Aitel (2002)
#
##
#TODO:
#techically we should also go to the UDP 1434 resolver service
#and get
Exploit-DB
Microsoft SQL Server 2000 - Resolution Service Heap Overflow
exploitdb·2002-07-25
CVE-2002-0649 Microsoft SQL Server 2000 - Resolution Service Heap Overflow
Microsoft SQL Server 2000 - Resolution Service Heap Overflow
---
source: https://www.securityfocus.com/bid/5310/info
A vulnerability in Microsoft SQL Server 2000 could allow remote attackers to access target hosts.
A problem in the SQL Server Resolution Service allows a remote attacker to execute arbitrary code on a vulnerable host. The attacker could exploit a heap-based buffer overflow in the resolution service by sending a maliciously crafted UDP packet to port 1434.
***UPDATE:
A worm that may exploit this vulnerability has been detected in the wild.
Administrators are advised to:
- Block all external access to database servers until more information is available.
- Deny access to TCP and UDP ports 1434 completely
- Implement filter rules for other ports to decrease the chances
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2002-08/0183.htmlhttp://www.iss.net/security_center/static/9905.phphttp://www.securityfocus.com/bid/5507http://archives.neohapsis.com/archives/bugtraq/2002-08/0183.htmlhttp://www.iss.net/security_center/static/9905.phphttp://www.securityfocus.com/bid/5507
2003-04-11
Published