Alibaba get32.exe Arbitrary Command Execution

The 'get32.exe' CGI script is installed on this machine. This CGI has a well known security flaw that allows an attacker to execute arbitrary commands on the remote system with the privileges of the HTTP daemon typically root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

AN-HTTPd 1.2b - CGI s

AN-HTTPd 1.2b - CGI s source: https://www.securityfocus.com/bid/762/info Certain versions of the AN-HTTPd server contain default CGI scripts that allow code to be executed remotely. This is due to poor sanity checking on user supplied data. http://www.xxx.yy/cgi-bin/input.bat?|dir....\windows...

CVE-1999-0262

Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via shell metacharacters in the query string...

CVE-1999-0266

The CVE-1999-0266 issue affects the info2www CGI script, which can allow remote file access or remote command execution. The vulnerability arises from insufficient input filtering of shell meta-characters in early info2www versions, enabling an attacker to run arbitrary commands with the web serv...

CVE-1999-0045

List of arbitrary files on Web host via nph-test-cgi script...

EUVD-1999-0045

List of arbitrary files on Web host via nph-test-cgi script...

CVE-1999-0191

CVE-1999-0191 affects Microsoft IIS via the CGI newdsn.exe script. The vulnerability exists in the /scripts/tools/newdsn.exe CGI, which allows remote attackers to create or overwrite files on the server if NTFS permissions permit, enabling arbitrary file creation and potential DSN overwrites. The...

Hughes Technologies Mini SQL (mSQL) 2.0/2.0.10 - Information Disclosure

source: https://www.securityfocus.com/bid/591/info Under certain versions of Mini SQL, the w3-msql CGI script allows users to view directories which are set for private access via .htaccess files. W3-mSQL converts any form data passed to a script into global Lite variables and these variables can...

CVE-1999-0753

The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories...

nsover.txt

http://www.rootshell.com/ From [email protected] Wed Oct 21 18:00:09 1998 Date: Wed, 21 Oct 1998 19:23:45 -0500 From: Mr. Nothing To: [email protected] Subject: Netscape Buffer Overflow Here is a buffer overflow exploit for Netscape on x86 Linux. It can be activated remotely by the followi...

msie4.width.000.txt

Jim Paris http://home.jtan.com/jim/bugs/ie/width.html Internet Explorer 4.x "width=000..." bug Some versions of Microsoft Internet Explorer will crash when given a long "width=" or "height=" string in an image tag under the correct circumstances. In most cases, IE will stop parsing the "width="...

Network Security Wizards Dragon-Fire IDS 1.0 - Command Execution

Network Security Wizards Dragon-Fire IDS 1.0 - Command Execution source: https://www.securityfocus.com/bid/564/info The Dragon-Fire IDS remote web interface under version 1.0 has an insecure CGI script which allows for users to remotely execute commands as the user nobody. This could lead to a...

Network Security Wizards Dragon-Fire IDS 1.0 - Command Execution

source: https://www.securityfocus.com/bid/564/info The Dragon-Fire IDS remote web interface under version 1.0 has an insecure CGI script which allows for users to remotely execute commands as the user nobody. This could lead to a remote compromise of the system running Dragon-Fire. Via the web...

Oracle Webserver PL/SQL Stored Procedure GET Request DoS

It was possible to make the remote web server crash by supplying a too long argument to the cgi /ews-bin/fnord. An attacker may use this flaw to prevent your customers to access your website. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc...

IRIX wrap CGI Traversal Arbitrary Directory Listing

The 'wrap' CGI is installed. This CGI allows anyone to get a listing for any directory with mode +755. Note that not all implementations of 'wrap' are vulnerable. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

O'Reilly WebSite uploader.exe Arbitrary File Upload

The remote web server contains a CGI script named 'uploader.exe' in '/cgi-win'. Versions of O'Reilly's Website product before 1.1g included a script with this name that allows an attacker to upload arbitrary CGI and then execute them. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

CDomain whois_raw.cgi fqdn Parameter Arbitrary Command Execution

The remote host appears to be using the CdomainFree 'whoisraw.cgi' script. This CGI script allows an attacker to view any file on the target computer, as well as to execute arbitrary commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

NCSA Campas cgi-bin Arbitrary Command Execution

The remote web server appears to be NCSA httpd. This version of the web server comes with a sample CGI script, campas, that fails to properly sanitize user input. This could allow a remote attacker to execute arbitrary commands with the privileges of the web server. %NASLMINLEVEL 70300 C Tenable...

Xylogics Annex Terminal Service ping CGI Program DoS

It was possible to crash the remote Annex terminal by connecting to the HTTP port, and requesting the '/ping' CGI script with an argument that is too long. For example: http://www.example.com/ping?query=AAAAA...AAAAA %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

WebGais webgais CGI Arbitrary Command Execution

The 'webgais' CGI is installed. This CGI may let an attacker execute arbitrary commands with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid10300;...