Nombas Scriptease Webserver vulnerabilities

CVE-2002-0323 [MEDIUM] CVE-2002-0323: comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying t comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL.

CVE-2002-0297 [MEDIUM] CVE-2002-0297: Buffer overflow in ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of servi Buffer overflow in ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long URL in an HTTP request.

CVE-2002-0298 [MEDIUM] CVE-2002-0298: ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service (crash) via cert ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service (crash) via certain HTTP GET requests containing (1) a %2e%2e (encoded dot-dot), (2) several /../ (dot dot) sequences, (3) a missing URI, or (4) several ../ in a URI that does not begin with a / (slash) character.

CVE-2001-1580 [MEDIUM] CVE-2001-1580: Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows r Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string.