Every CVE whose affected-product data names Sambar Sambar Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (18)
CVE-2000-0509 — CVSS 10.0 (critical): Buffer overflows in the finger and whois demonstration scripts in Sambar Server 4.3 allow remote attackers to execute arbitrary commands…
CVE-2002-0128 — CVSS 7.5 (high): cgitest.exe in Sambar Server 5.1 before Beta 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code…
CVE-2001-1292 — CVSS 7.5 (high): Sambar Telnet Proxy/Server allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long password.
CVE-1999-1523 — CVSS 7.5 (high): Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands…
CVE-2003-1286 — CVSS 7.5 (high): HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy…
CVE-2001-1106 — CVSS 7.5 (high): The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting…
CVE-2002-0737 — CVSS 6.4 (medium): Sambar web server before 5.2 beta 1 allows remote attackers to obtain source code of server-side scripts, or cause a denial of service…
CVE-1999-1178 — CVSS 5.0 (medium): Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl…
CVE-2000-0213 — CVSS 5.0 (medium): The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via…
CVE-2000-0835 — CVSS 5.0 (medium): search.dll Sambar ISAPI Search utility in Sambar Server 4.4 Beta 3 allows remote attackers to read arbitrary directories by specifying the…
CVE-2001-1010 — CVSS 5.0 (medium): Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary…
CVE-2004-2086 — CVSS 5.0 (medium): Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of…
CVE-2004-2565 — CVSS 5.0 (medium): Multiple directory traversal vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, when the…
CVE-2003-1287 — CVSS 4.6 (medium): Sambar Server before 6.0 beta 3 allows attackers with physical access to execute arbitrary code via a request with an MS-DOS device name…
CVE-2005-3506 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in proxy.asp in Sambar Server 6.3 BETA 2 and possibly earlier versions allows remote attackers to…
CVE-2004-2564 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, allow…
CVE-2003-1285 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web…
CVE-2006-6624 — CVSS 4.0 (medium): The FTP Server in Sambar Server 6.4 allows remote authenticated users to cause a denial of service (application crash) via a long series of…