Onnuri Infotek » Activepost Standard : Security Vulnerabilities, CVEs,

CVE-2004-2616

The file server in ActivePost Standard 3.1 and earlier allows remote authenticated users to obtain sensitive information by uploading a file, which reveals the path in a success message.
Max CVSS
4.0
EPSS Score
0.28%
Published
2004-12-31
Updated
2016-10-18

CVE-2004-1549

The conference menu in ActivePost Standard 3.1 sends passwords of password-protected rooms in cleartext, which could allow remote attackers to gain sensitive information by sniffing the network connection.
Max CVSS
5.0
EPSS Score
1.01%
Published
2004-12-31
Updated
2017-07-11

CVE-2004-1548

Directory traversal vulnerability in the file server in ActivePost Standard 3.1 allows remote authenticated users to upload arbitrary files via a .. (dot dot) in the filename.
Max CVSS
5.0
EPSS Score
0.54%
Published
2004-12-31
Updated
2017-07-11

CVE-2004-1547

The file server in ActivePost Standard 3.1 and earlier allows remote authenticated users to cause a denial of service (application crash) via a long filename, possibly triggering a buffer overflow.
Max CVSS
5.0
EPSS Score
1.53%
Published
2004-12-31
Updated
2017-07-11
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close