1383 matches found
CVE-2006-4511
Messenger Agents nmma.exe in Novell GroupWise 2.0.2 and 1.0.6 allows remote attackers to cause a denial of service crash via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings in blowfish routines."...
CVE-2006-3124
Buffer overflow in the HTTP header parsing in Streamripper before 1.61.26 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted HTTP headers...
CVE-2006-3124
Buffer overflow in the HTTP header parsing in Streamripper before 1.61.26 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted HTTP headers...
CVE-2006-2309
The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files...
CVE-2006-2309
The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files...
Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack Advisory ID: cisco-sa-20060126-vpn http://www.cisco.com/warp/public/707/cisco-sa-20060126-vpn.shtml Revision 2.0 Last Updated 26 April 2006 1600 UTC GMT For Public...
[Full-disclosure] HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit
------------------------------------------------------ HYSA-2006-005 h4cky0u.org Advisory 014 ------------------------------------------------------ Date - Wed March 08 2006 TITLE: ====== WordPress 2.0.1 Remote DoS Exploit SEVERITY: ========= Medium SOFTWARE: ========= Wordpress 2.0.1 and prior...
Re: [VulnWatch] Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack
With respect to: http://archives.neohapsis.com/archives/vulnwatch/2006-q1/0036.html I'm the person who discovered this particular Cisco VPN vulnerability and divulged some details at the end of my talk at Shmoocon - not "Schmoocon" as the original advisory spells it. The exploit involves sending ...
Code injection
Cisco VPN 3000 series concentrators running software 4.7.0 through 4.7.2.A allow remote attackers to cause a denial of service device reload or user disconnect via a crafted HTTP packet...
Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack
...
[Full-disclosure] Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack Advisory ID: cisco-sa-20060126-vpn http://www.cisco.com/warp/public/707/cisco-sa-20060126-vpn.shtml Revision 1.0 For Public Release 2006 January 26 1700 UTC GMT...
CVE-2005-3475
Hasbani Web Server WindWeb 2.0 allows remote attackers to cause a denial of service infinite loop via HTTP crafted GET requests...
MailEnable < 1.19 DoS Vulnerability - Active Check
MailEnable is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2004 George A. Theall Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Goollery < 0.04b Multiple XSS Vulnerabilities - Active Check
Goollery is prone to multiple cross-site-scripting XSS vulnerabilities eg. through the SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2005-2646
Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to cause a denial of service or read files via unknown vectors involving crafted HTTP requests...
CVE-2002-1999
HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests...
CVE-2005-1836
NEXTWEB iSite allows remote attackers to cause a denial of service error 500 via a crafted HTTP request, possibly involving wildcard requests for .jsp files...
CVE-2005-1836
NEXTWEB iSite allows remote attackers to cause a denial of service error 500 via a crafted HTTP request, possibly involving wildcard requests for .jsp files...
CVE-2004-1303
Buffer overflow in the get function in get.c for Yanf 0.4 allows remote malicious web servers to execute arbitrary code via crafted HTTP responses...
TinyWeb cgi-bin Crafted HTTP GET Request DoS
According to its banner, the remote version of TinyWeb has a denial of service vulnerability. Issuing a specially crafted GET request similar to : GET /cgi-bin/.%00./dddd.html can cause the server to consume large amounts of CPU time. Changes by Tenable: - Revised plugin title, output formatting,...