88 matches found
CVE-2001-0937
PGPMail.pl 1.31 allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 recipient or 2 pgpuserid parameters...
CVE-2001-0937
CVE-2001-0937 concerns PGPMail.pl CGI (up to version 1.31) where the recipient and pgpuserid CGI variables are not properly filtered before being passed to shell commands. This allows remote attackers to execute arbitrary commands on the server with the web server’s privileges. OpenVAS and Nessus...
CVE-2001-0937
PGPMail.pl 1.31 allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 recipient or 2 pgpuserid parameters...
CVE-2000-0937
The CVE concerns the Samba Web Administration Tool (SWAT) shipped with Samba 2.0.7, where login attempts that have a correct username but wrong password are not logged. This omission can enable brute-force password guessing by an attacker. Connected sources corroborate that SWAT in Samba 2.0.7 is...
CVE-2000-0937
Samba Web Administration Tool SWAT in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote attackers to conduct brute force password guessing attacks...
CVE-1999-0937
CVE-1999-0937 affects BNBForm’s bnbform.cgi CGI script. The vulnerability arises from insufficient filtering of user input in the automessage hidden variable, enabling remote attackers to read arbitrary files on the host (for example, via automessage value specifying a system file). Impact is rea...
CVE-1999-0937
BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable...
CVE-2021-0937
CVE-2021-0937 entry is rejected/not used per the Initial Description.