Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Evolvable Corporation Subscribe
Filtered by product Shambala Server
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2000-0954 1 Evolvable Corporation 1 Shambala Server 2017-12-18 10.0 HIGH N/A
Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server.
CVE-2000-0953 1 Evolvable Corporation 1 Shambala Server 2017-10-09 5.0 MEDIUM N/A
Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection.
CVE-2002-0876 1 Evolvable Corporation 1 Shambala Server 2008-09-05 5.0 MEDIUM N/A
Web server for Shambala 4.5 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request.
CVE-2002-0877 1 Evolvable Corporation 1 Shambala Server 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) LIST (ls) or (2) GET commands.
CVE-2001-0758 1 Evolvable Corporation 1 Shambala Server 2008-09-05 7.5 HIGH N/A
Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command.