New Atlanta Communications Bluedragon Server Jx : Security vulnerabilities, CVEs

Copy

CVE-2006-2311

Cross-site scripting (XSS) vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to inject arbitrary web script or HTML via the filename in a request to a (1) .cfm or (2) .cfml file, which reflects the result in the default error page.

Max CVSS

2.6

EPSS Score

0.29%

Published

2006-06-26

Updated

2011-03-08

CVE-2006-2310

BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to cause a denial of service (hang) via a request for a .cfm file whose name contains an MS-DOS device name such as (1) con, (2) aux, (3) com1, and (4) com2.

Max CVSS

5.0

EPSS Score

2.96%

Published

2006-06-26

Updated

2011-03-08

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!