6473 matches found
Infosec.20000712.worldclient.2.1
Infosec Security Vulnerability Report No: Infosec.20000712.worldclient.2.1 Vulnerability Summary --------------------- Problem: The web server for remote access to e-mail in WorldClient 2.1 is vulnerable for root dot dot. It is possible to read and in some cases download any file known by name an...
ie5.force-feed.txt
Saturday, 24 June 2000 Microsoft Internet Explorer 5 and accompanying mail and news clients on win95, win98 and win2000 enjoy a unique status in that they choose to ignore user input. Specifically, we are able to manually force a file onto the target computer despite all prompts and warnings. A 1...
CVE-2000-0400
The CVE-2000-0400 entry refers to the Microsoft Active Movie ActiveX Control in Internet Explorer 5, where the issue stems from shared code handling the Internet cache and file downloads (not the Active Movie control itself). Affected component is msdxm.ocx (ClassID {05589FA1-C356-11CE-BF01-00AA0...
JANAHTTP.server
Hello Bugtraqers, I found a directory travelling bug again, this time in JANA HTTP Server software available as freeware from http://www.jana-server.ocm.de . Here is a copy of the mail I sended to the author. eAX -------------------------------------------- Hello Thomas, I got your proxy/perver...
Newssubmission: Security vulnerability in the ICS HTTPServer component
Hi, There's a security vulnerability in the Delphi Internet Component = Suite's HTTP server. http://www.rtfm.be/fpiette/indexuk.htm These components are widly spread. The vender has been notified of the = flaw. Vulnerability description: The vulnerability let's a person download any file on the...
CVE-2000-0400
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post...
url.live-1.0.txt
Hello URL Live! 1.0 WebServer for Windows95/98/NT which is released by Pacific Software Publishing, Inc. http://www.urllive.com/ also has a "../" security problem, any users can download any files on the victim host. example: http://www.xxx.yy.jp/../../../../config.sys ----- The Shadow Penguin...
ms-personal-webserver-path.txt
Personal web server kiborg [email protected] Wed, 17 Jan 1996 22:30:13 +0200 Hello, Sorry if this has already been known. But i didn't find something of the sort. While playing with Microsoft Personal Web Server Frontpage-PWS32/3.0.2.926. I found that the following URL will list the root directo...
icq.webserver.exploits.txt
ICQ Homepage Exploit By Shadow51 Ever wondered why there is a little house beside the name of some people? That doesn't mean they are at home, it means they have the ICQ-Webserver running. The idiots who made it left huge bugs in it, like you can close their ICQ remotely, and even download their...
interscan.viruswall.txt
Date: Mon, 22 Feb 1999 21:31:51 +0100 From: The Unicorn To: [email protected] Subject: BlackHats Advisory -- InterScan VirusWall BlackHats Security Advisory Release date: February 22, 1999 Application: InterScan Viruswall for Solaris Severity: Any user can download binaries and virus infected...
CVE-2024-35343
Certain Anpviz products allow unauthenticated users to download arbitrary files from the device's filesystem via a HTTP GET request to the /playback/ URI. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380, IPC-D880, IPC-D280, IPC-D3180, MC800N, YM500L,...
Internet Explorer help
None None...
Update Rollup 2 for Windows Small Business Server 2011 Standard is available
None None...