Multiple buffer overflows in iMatix Xitami Web Server 2.5c2 allow remote attackers to execute arbitrary code via a long If-Modified-Since header to (1) xigui32.exe or (2) xitami.exe.
CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:PImatix Xitami
APPImatix2.5_c2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References
Related vulnerabilities
CVE-2008-6519HIGH10.0ten sam produkt
Format string vulnerability in Xitami Web Server 2.2a through 2.5c2, and possibly other versions, allows remot...
CVE-2008-6520HIGH10.0ten sam produkt
Multiple format string vulnerabilities in the SSI filter in Xitami Web Server 2.5c2, and possibly other versio...
CVE-2002-1942MEDIUM5.0ten sam produkt
Imatix Xitami 2.5 b5 does not properly terminate certain Keep-Alive connections that have been broken or close...
CVE-2002-1965MEDIUM4.3ten sam produkt
Cross-site scripting (XSS) vulnerability in Errors.gsl in Imatix Xitami 2.5b4 and 2.5b5 allows remote attacker...
CVE-2001-0391MEDIUM5.0ten sam produkt
Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux directory...