Shodan
Vulnerabilities
Vulnerable Software
Ecartis:  >> Ecartis  Security Vulnerabilities
CVE-2006-0332
Pantomime in Ecartis 1.0.0 snapshot 20050909 stores e-mail attachments in a publicly accessible directory, which may allow remote attackers to upload arbitrary files.
CVSS Score
6.4
EPSS Score
0.006
Published
2006-01-21
CVE-2004-0913
Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration.
CVSS Score
4.6
EPSS Score
0.001
Published
2004-12-31
CVE-2003-0781
Unknown vulnerability in ecartis before 1.0.0 does not properly validate user input, which allows attackers to obtain mailing list passwords.
CVSS Score
10.0
EPSS Score
0.005
Published
2004-05-04
CVE-2003-0782
Multiple buffer overflows in ecartis before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code.
CVSS Score
10.0
EPSS Score
0.008
Published
2004-05-04
CVE-2003-0162
Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page.
CVSS Score
7.5
EPSS Score
0.009
Published
2003-04-02
CVE-2002-0467
Buffer overflows in Ecartis (formerly Listar) 1.0.0 before snapshot 20020125 allows remote attackers to execute arbitrary code via (1) address_match() of mystring.c or (2) other functions in tolist.c.
CVSS Score
10.0
EPSS Score
0.226
Published
2002-08-12
CVE-2002-0468
Buffer overflows in Ecartis (formerly Listar) 1.0.0 in snapshot 20020427 and earlier allow local users to gain privileges via (1) a long command line argument, which is not properly handled in core.c, or possibly via bad uses of sprintf() in (2) moderate.c, (3) lcgi.c, (4) fileapi.c, (5) cookie.c, (6) codes.c, or other files.
CVSS Score
4.6
EPSS Score
0.005
Published
2002-08-12
CVE-2002-0469
Ecartis (formerly Listar) 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setuid-root, "lock-to-user" is not set, and ecartis is called by certain MTA's, which could allow local users to gain privileges.
CVSS Score
7.2
EPSS Score
0.0
Published
2002-08-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved