Bigant Im Message Server

bigant_im_message_server

Vendor: Bigantsoft • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-6275 1Bigantsoft 1Bigant Im Message Server Apr 29, 2026 Feb 24, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the userid component in...Show more Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the userid component in a DUPF request.Show less
CVE-2012-6274 1Bigantsoft 1Bigant Im Message Server Apr 29, 2026 Feb 24, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors.
CVE-2012-6273 1Bigantsoft 1Bigant Im Message Server Apr 29, 2026 Feb 24, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request.