Sun Cobalt_raq_3i

12 CVEs affecting Sun Cobalt_raq_3i. Latest disclosed: 2002-08-12. Critical: 0, High: 0.

Top CVEs affecting Sun Cobalt_raq_3i
CVESeverityScorePublishedSummary
CVE-2002-04302002-08-12MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a s…
CVE-2002-03482002-06-25service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long service argument.
CVE-2002-03472002-06-25Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. (…
CVE-2002-03462002-06-25Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) ser…
CVE-2001-10752001-07-04poprelayd script before 2.0 in Cobalt RaQ3 servers allows remote attackers to bypass authentication for relaying by causing a "POP login by user" string that i…
CVE-2000-04422000-05-24Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.
CVE-2000-04312000-05-22Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgi…
CVE-2000-03202000-04-21Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of ser…
CVE-2000-02342000-03-31The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess file.
CVE-2000-01172000-01-30The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibly admin (…
CVE-1999-08311999-11-19Denial of service in Linux syslogd via a large number of connections.
CVE-1999-15301999-11-08cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to vi…