Ewave Servletexec

ewave_servletexec

Vendor: Unify • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2000-1114 1Unify 1Ewave Servletexec Apr 16, 2026 Jan 9, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20".
CVE-2000-1025 1Unify 1Ewave Servletexec Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 eWave ServletExec JSP/Java servlet engine, versions 3.0C and earlier, allows remote attackers to cause a denial of service via a URL that contains the "/servlet/" string, which invokes the ServletExec servlet and causes...Show more eWave ServletExec JSP/Java servlet engine, versions 3.0C and earlier, allows remote attackers to cause a denial of service via a URL that contains the "/servlet/" string, which invokes the ServletExec servlet and causes an exception if the servlet is already running.Show less
CVE-2000-1024 1Unify 1Ewave Servletexec Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute arbitrary commands.
CVE-2000-0498 1Unify 1Ewave Servletexec Apr 16, 2026 Jun 8, 2000 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.