Zeus Web Server vulnerabilities
3 known vulnerabilities affecting zeus/zeus_web_server.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2010-0359P3CRITICALCVSS 10.0PoCv4.3r52010-01-20
CVE-2010-0359 [CRITICAL] CWE-119 CVE-2010-0359: Buffer overflow in the SSLv2 support in Zeus Web Server before 4.3r5 allows remote attackers to caus
Buffer overflow in the SSLv2 support in Zeus Web Server before 4.3r5 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long string in an invalid Client Hello message.
nvd
CVE-2010-0362P4MEDIUMCVSS 5.0≤ 4.3v3.3+12 more2010-01-20
CVE-2010-0362 [MEDIUM] CWE-310 CVE-2010-0362: Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it ea
Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses.
nvd
CVE-2010-0363P4LOWCVSS 2.6≤ 4.3r4v3.3+7 more2010-01-20
CVE-2010-0363 [LOW] CVE-2010-0363: Cross-site scripting (XSS) vulnerability in Zeus Web Server before 4.3r5, when SSL is enabled for th
Cross-site scripting (XSS) vulnerability in Zeus Web Server before 4.3r5, when SSL is enabled for the admin server, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2002-1785.
nvd