Hughes Technologies: Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in the error page in W3-mSQL allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the top-level URI.
CVSS Score
4.3
EPSS Score
0.003
Published
2008-01-08
Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request.
CVSS Score
10.0
EPSS Score
0.11
Published
2002-12-31
Hughes Technologies Virtual DNS (VDNS) Server 1.0 allows a remote attacker to create a denial of service by connecting to port 6070, sending some data, and closing the connection.
CVSS Score
5.0
EPSS Score
0.034
Published
2001-08-22
Buffer overflow in w3-auth CGI program in miniSQL package allows remote attackers to execute arbitrary commands via an HTTP request with (1) a long URL, or (2) a long User-Agent MIME header.
CVSS Score
7.5
EPSS Score
0.011
Published
1999-09-30