CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1202 matches found

Packet Storm•added 2008/01/24 12:0 a.m.•51 views

hfs-xss.txt

Syhunt: HFS HTTP File Server Template Cross-Site Scripting and Information Disclosure Vulnerabilities Advisory-ID: 200801161 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 2.0 to and including 2.3Beta Build 174 Non-Affected Applications: HFS 1.6a and earlier versions...

5CVSS6.5AI score0.00778EPSS

Exploits8

securityvulns•added 2008/01/24 12:0 a.m.•81 views

Syhunt: HFS (HTTP File Server) Log Arbitrary File/Directory Manipulation and Denial-of-Service Vulnerabilities

Syhunt: HFS HTTP File Server Log Arbitrary File/Directory Manipulation and Denial-of-Service Vulnerabilities Advisory-ID: 200801162 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 2.2 to and including 2.3Beta Build 174 Non-Affected Applications: HFS 2.1d and earlier...

10CVSS0.9AI score0.07535EPSS

Exploits6

securityvulns•added 2008/01/24 12:0 a.m.•86 views

Syhunt: HFS (HTTP File Server) Template Cross-Site Scripting and Information Disclosure Vulnerabilities

5CVSS0.00778EPSS

Exploits8

securityvulns•added 2008/01/24 12:0 a.m.•60 views

Syhunt: HFS (HTTP File Server) Username Spoofing and Log Forging/Injection Vulnerability

Syhunt: HFS HTTP File Server Username Spoofing and Log Forging/Injection Vulnerability Advisory-ID: 200801163 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 1.5g to and including 2.3Beta Build 174; and possibly HFS version 1.5f Non-Affected Applications: HFS 1.5e and...

6.4CVSS6.6AI score0.00778EPSS

Exploits7

Exploit DB•added 2008/01/23 12:0 a.m.•54 views

Rejetto HTTP File Server (HFS) 1.5/2.x - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/27423/info HFS HTTP File Server is prone to multiple security vulnerabilities, including cross-site scripting issues, an information-disclosure issue, an arbitrary file-creation issue, a denial-of-service issue, a username-spoofing issue, and a...

10CVSS6.4AI score0.07535EPSS

Exploits11

exploitpack•added 2008/01/23 12:0 a.m.•36 views

Rejetto HTTP File Server (HFS) 1.52.x - Multiple Vulnerabilities

Rejetto HTTP File Server HFS 1.52.x - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/27423/info HFS HTTP File Server is prone to multiple security vulnerabilities, including cross-site scripting issues, an information-disclosure issue, an arbitrary file-creation issue, a...

10CVSS0.5AI score0.07535EPSS

Exploits11

OpenVAS•added 2008/01/17 12:0 a.m.•19 views

Debian: Security Advisory (DSA-1291-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.90126EPSS

Exploits36References3

seebug.org•added 2008/01/08 12:0 a.m.•29 views

OpenAFS文件服务器远程拒绝服务漏洞

BUGTRAQ ID: 27132 CVECAN ID: CVE-2007-6599 OpenAFS是一套开放源代码的分布式文件系统，允许系统之间通过局域和广域网来分享档案和资源。 OpenAFS的文件服务器中存在竞争条件错误，远程攻击者可能利用此漏洞导致程序崩溃。如果远程攻击者同时请求并返回文件回调的话，GiveUpAllCallBacks RPC的处理器就会未经hostglock锁定便执行链表操作，导致守护程序崩溃。 OpenAFS OpenAFS 1.5.0 - 1.5.27 OpenAFS OpenAFS 1.3.50 - 1.4.5 OpenAFS -------...

4.3CVSS6.3AI score0.01514EPSS

Exploits1

OSV•added 2008/01/04 2:46 a.m.•1 views

DEBIAN-CVE-2007-6599

Race condition in fileserver in OpenAFS 1.3.50 through 1.4.5 and 1.5.0 through 1.5.27 allows remote attackers to cause a denial of service daemon crash by simultaneously acquiring and giving back file callbacks, which causes the handler for the GiveUpAllCallBacks RPC to perform linked-list...

4.3CVSS6.8AI score0.01514EPSS

Exploits1References1

seebug.org•added 2007/12/11 12:0 a.m.•382 views

HFS HTTP File Server任意文件上传漏洞

HTTP File Server是一款基于HTTP的文件服务程序。 HTTP File Server不正确过滤用户提交的文件数据，远程攻击者可以利用漏洞进行目录遍历攻击，上传文件到任意目标文件夹。使用'../'形式的文件名形式，可绕过目录限制，上传文件到任意系统位置。 HTTP File Server HTTP File Server 2.2a HTTP File Server HTTP File Server 2.2 升级程序： HTTP File Server HTTP File Server 2.2a HTTP File Server HTTP File Server 2.2b...

7.1AI score

Exploits0

securityvulns•added 2007/12/09 12:0 a.m.•24 views

HTTP File Server directory traversal

Durectory traversal on file upload...

1.1AI score

Exploits0References1Affected Software1

securityvulns•added 2007/12/09 12:0 a.m.•54 views

Limited upload directory traversal in HTTP File Server 2.2a / 2.3 beta (build #146)

Luigi Auriemma Application: HTTP File Server http://www.rejetto.com/hfs/ Versions: = 2.2a and = 2.3 beta build 146 Platforms: Windows Bug: limited directory traversal in files uploading Exploitation: remote Date: 05 Dec 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...

1.1AI score

Exploits0

exploitpack•added 2007/12/05 12:0 a.m.•11 views

Rejetto HTTP File Server (HFS) 2.22.3 - Arbitrary File Upload

Rejetto HTTP File Server HFS 2.22.3 - Arbitrary File Upload source: https://www.securityfocus.com/bid/26732/info HFS HTTP File Server is prone to a vulnerability that lets attackers upload files and place them in arbitrary locations on the server. The issue occurs because the software fails to...

7.4AI score

Exploits0

Exploit DB•added 2007/12/05 12:0 a.m.•43 views

Rejetto HTTP File Server (HFS) 2.2/2.3 - Arbitrary File Upload

source: https://www.securityfocus.com/bid/26732/info HFS HTTP File Server is prone to a vulnerability that lets attackers upload files and place them in arbitrary locations on the server. The issue occurs because the software fails to adequately sanitize user-supplied input. A successful exploit...

7AI score

Exploits0

securityvulns•added 2007/05/16 12:0 a.m.•51 views

Samba file server multiple security vulnerabilities

Multiple heap based buffer overflows, invalid SID to uid translation privilege escalation, shell characters problem...

10CVSS3.5AI score0.90126EPSS

Exploits36References9Affected Software1

Prion•added 2007/03/13 10:19 p.m.•26 views

Stack overflow

Stack-based buffer overflow in the Apple-specific Samba module SMB File Server in Apple Mac OS X 10.4 through 10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL...

9.3CVSS8AI score0.03532EPSS

Exploits0References9Affected Software2

NVD•added 2007/03/13 10:19 p.m.•16 views

CVE-2007-0731

Stack-based buffer overflow in the Apple-specific Samba module SMB File Server in Apple Mac OS X 10.4 through 10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL...

9.3CVSS7.5AI score0.03532EPSS

Exploits0References9

CVE•added 2007/03/13 10:0 p.m.•51 views

CVE-2007-0731

CVE-2007-0731: A stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) of Apple Mac OS X 10.4–10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL. The vulnerability affects the SMB File Server component bundled with Mac OS X; root cause is...

9.3CVSS8.1AI score0.03532EPSS

Exploits0References9Affected Software2

Cvelist•added 2007/03/13 10:0 p.m.•23 views

CVE-2007-0731

Stack-based buffer overflow in the Apple-specific Samba module SMB File Server in Apple Mac OS X 10.4 through 10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL...

8.1AI score0.03532EPSS

Exploits0References9