cbcvebase.

Critical Path Injoin Directory Server vulnerabilities

4 known vulnerabilities affecting critical_path/injoin_directory_server.

Total CVEs
4
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2002-0787P4HIGHCVSS 7.5PoCv4.02002-08-12
CVE-2002-0787 [HIGH] CVE-2002-0787: Cross-site scripting vulnerabilities in iCon administrative web server for Critical Path inJoin Dire Cross-site scripting vulnerabilities in iCon administrative web server for Critical Path inJoin Directory Server 4.0 allow remote attackers to execute script as the administrator via administrator URLs with modified (1) LOCID or (2) OC parameters.
nvd
CVE-2002-0786P4MEDIUMCVSS 5.0PoCv4.02002-08-12
CVE-2002-0786 [MEDIUM] CVE-2002-0786: iCon administrative web server for Critical Path inJoin Directory Server 4.0 allows authenticated in iCon administrative web server for Critical Path inJoin Directory Server 4.0 allows authenticated inJoin administrators to read arbitrary files by specifying the target file in the LOG parameter.
nvd
CVE-2001-1314P4HIGHCVSS 7.5v2.0v2.1+3 more2001-07-16
CVE-2001-1314 [HIGH] CVE-2001-1314: Buffer overflows in Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow rem Buffer overflows in Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
nvd
CVE-2001-1315P4HIGHCVSS 7.5v2.0v2.1+3 more2001-07-16
CVE-2001-1315 [HIGH] CVE-2001-1315: Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cau Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.
nvd
Critical Path Injoin Directory Server vulnerabilities | cvebase