Lucene search
K

1383 matches found

Cvelist
Cvelist
added 2006/10/04 1:0 a.m.25 views

CVE-2006-4511

Messenger Agents nmma.exe in Novell GroupWise 2.0.2 and 1.0.6 allows remote attackers to cause a denial of service crash via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings in blowfish routines."...

6.6AI score0.03004EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2006/08/26 9:4 p.m.21 views

CVE-2006-3124

Buffer overflow in the HTTP header parsing in Streamripper before 1.61.26 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted HTTP headers...

7.5CVSS6.1AI score0.18678EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2006/08/26 10:0 a.m.24 views

CVE-2006-3124

Buffer overflow in the HTTP header parsing in Streamripper before 1.61.26 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted HTTP headers...

7.5CVSS7.2AI score0.18678EPSS
Exploits0
NVD
NVD
added 2006/06/02 12:2 a.m.13 views

CVE-2006-2309

The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files...

4CVSS6.4AI score0.01609EPSS
Exploits0References8
Cvelist
Cvelist
added 2006/06/02 12:0 a.m.16 views

CVE-2006-2309

The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files...

6.4AI score0.01609EPSS
Exploits0References8
securityvulns
securityvulns
added 2006/04/26 12:0 a.m.30 views

Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack Advisory ID: cisco-sa-20060126-vpn http://www.cisco.com/warp/public/707/cisco-sa-20060126-vpn.shtml Revision 2.0 Last Updated 26 April 2006 1600 UTC GMT For Public...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2006/03/08 12:0 a.m.30 views

[Full-disclosure] HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit

------------------------------------------------------ HYSA-2006-005 h4cky0u.org Advisory 014 ------------------------------------------------------ Date - Wed March 08 2006 TITLE: ====== WordPress 2.0.1 Remote DoS Exploit SEVERITY: ========= Medium SOFTWARE: ========= Wordpress 2.0.1 and prior...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2006/02/01 12:0 a.m.30 views

Re: [VulnWatch] Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack

With respect to: http://archives.neohapsis.com/archives/vulnwatch/2006-q1/0036.html I'm the person who discovered this particular Cisco VPN vulnerability and divulged some details at the end of my talk at Shmoocon - not "Schmoocon" as the original advisory spells it. The exploit involves sending ...

0.6AI score
Exploits0
Prion
Prion
added 2006/01/31 8:3 p.m.17 views

Code injection

Cisco VPN 3000 series concentrators running software 4.7.0 through 4.7.2.A allow remote attackers to cause a denial of service device reload or user disconnect via a crafted HTTP packet...

7.8CVSS7.2AI score0.03122EPSS
Exploits0References8Affected Software2
Cisco
Cisco
added 2006/01/26 5:0 p.m.14 views

Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack

...

0.5AI score
Exploits0References1
securityvulns
securityvulns
added 2006/01/26 12:0 a.m.33 views

[Full-disclosure] Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack Advisory ID: cisco-sa-20060126-vpn http://www.cisco.com/warp/public/707/cisco-sa-20060126-vpn.shtml Revision 1.0 For Public Release 2006 January 26 1700 UTC GMT...

Exploits0
NVD
NVD
added 2005/11/03 2:2 a.m.23 views

CVE-2005-3475

Hasbani Web Server WindWeb 2.0 allows remote attackers to cause a denial of service infinite loop via HTTP crafted GET requests...

5CVSS6.6AI score0.08279EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.10 views

MailEnable < 1.19 DoS Vulnerability - Active Check

MailEnable is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2004 George A. Theall Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.39 views

Goollery < 0.04b Multiple XSS Vulnerabilities - Active Check

Goollery is prone to multiple cross-site-scripting XSS vulnerabilities eg. through the SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS6.8AI score0.0269EPSS
Exploits2References5
Cvelist
Cvelist
added 2005/08/21 4:0 a.m.23 views

CVE-2005-2646

Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to cause a denial of service or read files via unknown vectors involving crafted HTTP requests...

6.7AI score0.0206EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/07/14 4:0 a.m.24 views

CVE-2002-1999

HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests...

6.7AI score0.02653EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/06/02 4:0 a.m.18 views

CVE-2005-1836

NEXTWEB iSite allows remote attackers to cause a denial of service error 500 via a crafted HTTP request, possibly involving wildcard requests for .jsp files...

6.7AI score0.01786EPSS
Exploits1References2
NVD
NVD
added 2005/06/01 4:0 a.m.15 views

CVE-2005-1836

NEXTWEB iSite allows remote attackers to cause a denial of service error 500 via a crafted HTTP request, possibly involving wildcard requests for .jsp files...

5CVSS6.7AI score0.01786EPSS
Exploits1References2
NVD
NVD
added 2005/01/10 5:0 a.m.12 views

CVE-2004-1303

Buffer overflow in the get function in get.c for Yanf 0.4 allows remote malicious web servers to execute arbitrary code via crafted HTTP responses...

10CVSS7.9AI score0.06201EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2003/10/16 12:0 a.m.29 views

TinyWeb cgi-bin Crafted HTTP GET Request DoS

According to its banner, the remote version of TinyWeb has a denial of service vulnerability. Issuing a specially crafted GET request similar to : GET /cgi-bin/.%00./dddd.html can cause the server to consume large amounts of CPU time. Changes by Tenable: - Revised plugin title, output formatting,...

7.8CVSS5.5AI score0.01691EPSS
Exploits1References1
Rows per page
Query Builder