Security Update: [CSSA-2003-007.0] Linux: Apache mod_dav module format string vulnerability

To: [email protected] [email protected] [email protected] [email protected] SCO Security Advisory Subject: Linux: Apache moddav module format string vulnerability Advisory number: CSSA-2003-007.0 Issue date: 2003 February 17 Cross reference: 1...

Ikonboard 3.1.1 multiple crossite scriptings

Ikonboard 3.1.1 There are few ways to insert HTML tags into board content. 1. Via Photo URL. In profile user can set URL of photo. It's possible to insert URL like javascript:alertdocument.cookie Javascript will be triggered if someone accesses user's profile. 2. Via X-Forwarded-For: header. User...

Security Update: [CSSA-2002-048.0] Linux: wwwoffled remote access vulnerability

To: [email protected] [email protected] [email protected] [email protected] SCO Security Advisory Subject: Linux: wwwoffled remote access vulnerability Advisory number: CSSA-2002-048.0 Issue date: 2002 November 18 Cross reference: 1. Problem...

CVE-2000-1020

CVE-2000-1020 describes a heap overflow in Worldclient of MDaemon (versions 3.1.1 and earlier) that can be triggered by a long URL, allowing remote attackers to cause a denial of service and potentially execute arbitrary commands. The issue is exploitable over the network without authentication, ...

CVE-2000-1021

Heap overflow in WebConfig in Mdaemon 3.1.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long URL...