Software602: Security Vulnerabilities
602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or ".bak" extension.
CVSS Score
5.0
EPSS Score
0.003
Published
2002-12-31
The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password protected.
CVSS Score
10.0
EPSS Score
0.011
Published
2002-12-31
The Telnet proxy of 602Pro LAN SUITE 2002 does not restrict the number of outstanding connections to the local host, which allows remote attackers to create a denial of service (memory consumption) via a large number of connections.
CVSS Score
5.0
EPSS Score
0.04
Published
2002-12-31
Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request containing "%2e" (dot dot) characters.
CVSS Score
7.5
EPSS Score
0.011
Published
2001-06-18
Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service via an HTTP GET HTTP request to the aux directory, and possibly other directories with legacy DOS device names.
CVSS Score
5.0
EPSS Score
0.006
Published
2001-06-18
Buffer overflow in remote web administration component (webprox.dll) of 602Pro LAN SUITE before 2000.0.1.33 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request.
CVSS Score
7.5
EPSS Score
0.014
Published
2001-01-09
Page 2