Skip to main content

Bigant Im Message Server

3 CVEs product

Monthly

CVE-2012-6275 CRITICAL POC THREAT Emergency

Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.5%.

Buffer Overflow Bigant Im Message Server
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
76.5%
Threat
5.8
CVE-2012-6274 MEDIUM POC THREAT This Month

BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 75.3%.

Authentication Bypass Bigant Im Message Server
NVD Exploit-DB
CVSS 2.0
5.0
EPSS
75.3%
Threat
4.8
CVE-2012-6273 HIGH This Week

SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Bigant Im Message Server
NVD
CVSS 2.0
7.5
EPSS
0.4%
EPSS 77% 5.8 CVSS 10.0
CRITICAL POC THREAT Emergency

Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.5%.

Buffer Overflow Bigant Im Message Server
NVD Exploit-DB
EPSS 75% 4.8 CVSS 5.0
MEDIUM POC THREAT This Month

BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 75.3%.

Authentication Bypass Bigant Im Message Server
NVD Exploit-DB
EPSS 0% CVSS 7.5
HIGH This Week

SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Bigant Im Message Server
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy