Instantservers Inc.: >> Miniportal Security Vulnerabilities
InstantServers MiniPortal 1.1.5 and earlier stores sensitive login and account data in plaintext in (1) .pwd files in the miniportal/apache directory, or (2) mplog.txt, which could allow local users to gain privileges.
CVSS Score
4.6
EPSS Score
0.001
Published
2002-05-29
Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility.
CVSS Score
7.5
EPSS Score
0.033
Published
2002-05-29
Directory traversal vulnerability in InstantServers MiniPortal 1.1.5 and earlier allows remote authenticated users to read arbitrary files via a ... (modified dot dot) in the GET command.
CVSS Score
7.5
EPSS Score
0.032
Published
2002-05-29