S21Sec

2 exploits Active since Apr 2000

CVE-2003-0400 EXPLOITDB text WRITEUP

Vignette StoryServer & V/5 - Memory Corruption

Vignette StoryServer and Vignette V/5 does not properly calculate the size of text variables, which causes Vignette to return unauthorized portions of memory, as demonstrated using the "-->" string in a CookieName argument to the login template, referred to as a "memory leak" in some reports.

View Code

CVE-2000-0634 EXPLOITDB text WORKING POC

CommuniGate Pro <3.2.5 - Info Disclosure

The web administration interface for CommuniGate Pro 3.2.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.

View Code