彙總 ncsa 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
常見弱點模式包括 輸入驗證問題與緩衝區溢位,在 軟體部署與生產負載 使用場景中可能帶來 異常行為 等風險。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2011-0738 | MyProxy 5.0 through 5.2, as used in Globus Toolkit 5.0.0 through 5.0.2, does not properly verify the (1) hostname or (2) identity in the X.509 certificate for the myproxy-server, which allows remote attackers to spoof the server and conduct man-in-the-middle (MITM) attacks via a crafted certificate when executing (a) myproxy-logon or (b) myproxy-get-delegation. | [email protected] | 4.3 | 0.99% | 2011-02-02 | 2026-04-29 |
| CVE-2005-0469 | Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands. | [email protected] | 7.5 | 47.82% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0468 | Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated. | [email protected] | 7.5 | 58.54% | 2005-05-02 | 2026-04-16 |
| CVE-1999-0267 | Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution. | [email protected] | 7.5 | 6.26% | 1997-09-23 | 2026-04-16 |
| CVE-1999-0146 | The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file. | [email protected] | 7.5 | 12.94% | 1997-07-15 | 2026-04-16 |
| CVE-1999-0067 | phf CGI program allows remote command execution through shell metacharacters. | [email protected] | 10.0 | 85.83% | 1996-03-20 | 2026-04-16 |
| CVE-1999-0235 | Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access. | [email protected] | 10.0 | 3.30% | 1995-02-17 | 2026-04-16 |
| CVE-1999-1090 | The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files. | [email protected] | 7.5 | 0.72% | 1991-09-10 | 2026-04-16 |