Shodan
Vulnerabilities
Vulnerable Software
Sambar:  Security Vulnerabilities
CVE-2002-0128
cgitest.exe in Sambar Server 5.1 before Beta 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long argument.
CVSS Score
7.5
EPSS Score
0.087
Published
2002-03-25
CVE-2001-1292
Sambar Telnet Proxy/Server allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long password.
CVSS Score
7.5
EPSS Score
0.028
Published
2001-08-13
CVE-2001-1106
The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwords by cracking the key or modifying a copy of the sambar program to call the decryption procedure.
CVSS Score
7.5
EPSS Score
0.015
Published
2001-07-25
CVE-2001-1010
Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter.
CVSS Score
5.0
EPSS Score
0.051
Published
2001-07-22
CVE-2000-0835
search.dll Sambar ISAPI Search utility in Sambar Server 4.4 Beta 3 allows remote attackers to read arbitrary directories by specifying the directory in the query parameter.
CVSS Score
5.0
EPSS Score
0.036
Published
2000-11-14
CVE-2000-0509
Buffer overflows in the finger and whois demonstration scripts in Sambar Server 4.3 allow remote attackers to execute arbitrary commands via a long hostname.
CVSS Score
10.0
EPSS Score
0.026
Published
2000-06-01
CVE-2000-0213
The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via shell metacharacters.
CVSS Score
5.0
EPSS Score
0.074
Published
2000-02-23
CVE-1999-1523
Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request.
CVSS Score
7.5
EPSS Score
0.011
Published
1999-10-04
CVE-1999-1178
Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script.
CVSS Score
5.0
EPSS Score
0.01
Published
1998-06-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved