Openconnect : Security Vulnerabilities, CVEs, CVSS score >= 5

CVE-2004-0466

WebConnect 6.5, 6.4.4, and possibly earlier versions allows remote attackers to cause a denial of service (hang) via a URL containing an MS-DOS device name such as (1) AUX, (2) CON, (3) PRN, (4) COM1, or (5) LPT1.
Max CVSS
5.0
EPSS Score
2.65%
Published
2004-02-21
Updated
2017-07-11

CVE-2004-0465

Directory traversal vulnerability in jretest.html in WebConnect 6.5 and 6.4.4, and possibly earlier versions, allows remote attackers to read keys within arbitrary INI formatted files via "..//" sequences in the WCP_USER parameter.
Max CVSS
5.0
EPSS Score
4.39%
Published
2004-12-31
Updated
2017-07-11
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close