Lucene search
K

276 matches found

securityvulns
securityvulns
added 2003/11/17 12:0 a.m.31 views

NetServe buffer overflow

Directory traversal, configuration access...

4.5AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/10/06 12:0 a.m.24 views

Easy File Sharing Web Server multiple bugs

DoS, unauthorized logs and config access...

2.3AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2003/08/09 12:0 a.m.24 views

geeeekShop 1.4 - Information Disclosure

source: https://www.securityfocus.com/bid/8380/info geeeekShop is prone to multiple information disclosure vulnerabilities. Passing invalid data as URI parameters to geeeekShop scripts, will cause an error message to be displayed, which contains installation path information. Additionally it has...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/05/28 12:0 a.m.57 views

CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass

Core Security Technologies Advisory http://www.coresecurity.com Axis Network Camera HTTP Authentication Bypass Date Published: 2003-05-27 Last Update: 2003-05-23 Advisory ID: CORE-2003-0403 Bugtraq ID: 7652 CVE Name: CAN-2003-0240 Title: Axis Network Camera HTTP Authentication Bypass Class: Acces...

10CVSS0.4AI score0.29521EPSS
Exploits1
Packet Storm
Packet Storm
added 2003/05/28 12:0 a.m.57 views

core.axis.txt

Core Security Technologies Advisory http://www.coresecurity.com Axis Network Camera HTTP Authentication Bypass Date Published: 2003-05-27 Last Update: 2003-05-23 Advisory ID: CORE-2003-0403 Bugtraq ID: 7652 CVE Name: CAN-2003-0240 Title: Axis Network Camera HTTP Authentication Bypass Class: Acces...

10CVSS6.7AI score0.29521EPSS
Exploits1
Core Security
Core Security
added 2003/05/27 12:0 a.m.40 views

Axis Network Camera HTTP Authentication Bypass

Advisory ID Internal CORE-2003-0403 Core Security Technologies Advisory http://www.coresecurity.com Date Published: 2003-05-27 Last Update: 2003-05-23 Advisory ID: CORE-2003-0403 Bugtraq ID: 7652 CVE Name: CAN-2003-0240 Title: Axis Network Camera HTTP Authentication Bypass Class: Access Validatio...

10CVSS7.4AI score0.29521EPSS
Exploits1
securityvulns
securityvulns
added 2003/03/31 12:0 a.m.25 views

Edikon Release 0.6 of PHPShop

Product : Edikon Release 0.6 of PHPShop Version : 0.6.1 WebSite : http://www.phpshop.org Problem : Viewing dbase information Description: ------------ eng In phpShop we can get access to a database of the server as the file of a configuration is accessible to each user. As we can find out a full...

7.1AI score
Exploits0
Debian
Debian
added 2003/03/21 2:1 p.m.62 views

[SECURITY] [DSA 265-1] New bonsai packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 265-1 [email protected] http://www.debian.org/security/ Martin Schulze March 21st, 2003 http://www.debian.org/security/faq -...

7.5CVSS0.7AI score0.05668EPSS
Exploits1
Debian
Debian
added 2003/03/21 2:1 p.m.45 views

[SECURITY] [DSA 265-1] New bonsai packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 265-1 [email protected] http://www.debian.org/security/ Martin Schulze March 21st, 2003 http://www.debian.org/security/faq -...

6.7AI score
Exploits1
OSV
OSV
added 2003/03/21 12:0 a.m.43 views

DSA-265 bonsai - several vulnerabilities

Bulletin has no description...

7.5CVSS6AI score0.05668EPSS
Exploits1
CERT
CERT
added 2003/03/21 12:0 a.m.48 views

Blahz-DNS does not properly authenticate users before granting access to various configuration pages

Overview Blahz-DNS does not properly authenticate users. Description Blahz-DNS does not properly authenticate users. As a result, an attacker can gain access to various configuration pages. For more detailed information, please see the ppp-design advisory. --- Impact An attacker can gain access t...

10CVSS6.4AI score0.11518EPSS
Exploits1References6
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.26 views

CVE-2002-0066

Funk Software Proxy Host 3.x before 3.09A creates a Named Pipe that does not require authentication and is installed with insecure access control, which allows local and possibly remote users to use the Proxy Host's configuration utilities and gain privileges...

6.9AI score0.01635EPSS
Exploits0References3
securityvulns
securityvulns
added 2002/05/11 12:0 a.m.42 views

Cisco ATA-186 admin password can be trivially circumvented

The Cisco ATA-186 Analog Telephone adapter interfaces "legacy" analog telephones to VoIP networks. The adapter can be configured via a web interface, that typically requires a password to access. Unfortunately, this password protection can be trivially circumvented. On two ATA-186s that we tested...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.21 views

CVE-1999-1420

NBase switches NH2012, NH2012R, NH2015, and NH2048 have a back door password that cannot be disabled, which allows remote attackers to modify the switch's configuration...

6.5AI score0.02925EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2001/05/28 12:0 a.m.298 views

Apache mod_info /server-info Information Disclosure

A remote unauthenticated attacker can obtain an overview of the remote Apache web server's configuration by requesting the URL '/server-info'. This overview includes information such as installed modules, their configuration, and assorted run-time settings. C Tenable Network Security, Inc...

5.8AI score
Exploits0References1
securityvulns
securityvulns
added 2000/12/05 12:0 a.m.28 views

ezmlm-cgi

Package : ezmlm-0.53 and below ezmlm-cgi Announced: 2000-12-05 Ezmlm is an easy to use mailing list manager for qmail. It ships with a cgi application to allow for list archiving and reviewal over the web. Documentation states that the cgi should be installed suid root, but in real world...

0.5AI score
Exploits0
Rows per page
Query Builder