350 matches found
Walla TeleSite 3.0 - 'ts.exe?sug' Cross-Site Scripting
source: https://www.securityfocus.com/bid/15419/info Walla TeleSite is prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. Walla TeleSite is prone to information and path disclosure, file enumeration, SQL injection, and...
Walla TeleSite 3.0 - 'ts.exe?sug' SQL Injection
source: https://www.securityfocus.com/bid/15419/info Walla TeleSite is prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. Walla TeleSite is prone to information and path disclosure, file enumeration, SQL injection, and...
CVE-2002-2031
Internet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to determine the existence of arbitrary files via a script tag with a src parameter that references a non-JavaScript file, then using the onError event handler to monitor the results...
CVE-2005-1201
Summary: CVE-2005-1201 affects AZ Bulletin Board (AZBB) prior to version 1.0.08. The issue comprises two directory traversal flaws: (1) restricted to remote authenticated admin users who can delete arbitrary files via a “..” in the URL to admin_avatar.php or admin_attachment.php; (2) remote attac...
Multiple Security Issues Found In AZBB
GulfTech Security Research April 19th, 2005 Vendor : AZBB URL : http://azbb.cyaccess.com/ Version : AZBB 1.0.07d && Earlier Risk : Multiple Vulnerabilities Description: azbb is a forum that was written with a primary focus on security. azbb does not require a database such as MySQL, PostGres or...
Adobe Acrobat Reader file information leak
It's possible to enumerate files...
Portcullis Security Advisory 05-006
Portcullis Security Advisory Vulnerable System: Webseries Payment Application Vulnerability Title: Directory & File Enumeration Via Reporting System Vulnerability discovery and development: Portcullis Security Testing Services Affected systems: Bottomline Webseries Payment Application Details: By...
Microsoft Windows Media Player 9.0 - ActiveX Control File Enumeration
source: https://www.securityfocus.com/bid/12032/info The Windows Media Player ActiveX control is prone to a security weakness that may allow a malicious Web page to enumerate files that exist on the client computer. This could aid in further attacks. This issue is reported to affect Windows Media...
Microsoft Windows Media Player 9.0 - ActiveX Control File Enumeration
Microsoft Windows Media Player 9.0 - ActiveX Control File Enumeration source: https://www.securityfocus.com/bid/12032/info The Windows Media Player ActiveX control is prone to a security weakness that may allow a malicious Web page to enumerate files that exist on the client computer. This could...
MailPost.exe Multiple Vulnerabilities
Binary data 2386.prm...
TIPS MailPost 5.1.1 - Remote File Enumeration
TIPS MailPost 5.1.1 - Remote File Enumeration source: https://www.securityfocus.com/bid/11599/info TIPS MailPost is affected by a remote file enumeration vulnerability. This issue is due to a failure to properly sanitize user requests. An attacker may leverage this issue to gain knowledge of the...
TIPS MailPost 5.1.1 - Remote File Enumeration
source: https://www.securityfocus.com/bid/11599/info TIPS MailPost is affected by a remote file enumeration vulnerability. This issue is due to a failure to properly sanitize user requests. An attacker may leverage this issue to gain knowledge of the existence of files outside the Web root...
Netscape/Mozilla/Galeon Local File Enumeration (deprecated)
Binary data 1311.prm...
GuildFTPd Traversal Arbitrary File Enumeration
Binary data 1840.prm...
EFTP < 2.0.8.348 File Enumeration
Binary data 1834.prm...
ArGoSoft FTP Server 1.01.21.4 - Multiple Vulnerabilities
ArGoSoft FTP Server 1.01.21.4 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/9770/info ArGoSoft has released version 1.4.1.6 of their FTP Server to address multiple unspecified security vulnerabilities. These issues include three buffer overruns when handling overly long FTP...
ArGoSoft FTP Server 1.0/1.2/1.4 - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/9770/info ArGoSoft has released version 1.4.1.6 of their FTP Server to address multiple unspecified security vulnerabilities. These issues include three buffer overruns when handling overly long FTP SITE ZIP and SITE COPY commands, a file enumeration issu...
Microsoft Internet Explorer 5.0.1 - LoadPicture File Enumeration
Microsoft Internet Explorer 5.0.1 - LoadPicture File Enumeration source: https://www.securityfocus.com/bid/9611/info Microsoft Internet Explorer is prone to an issue that may permit a remote site to enumerate the existence of files on the client system. This may be exploited via abuse of the...
Microsoft Internet Explorer 5.0.1 - LoadPicture File Enumeration
source: https://www.securityfocus.com/bid/9611/info Microsoft Internet Explorer is prone to an issue that may permit a remote site to enumerate the existence of files on the client system. This may be exploited via abuse of the VBScript LoadPicture method. Exploitation of the weakness may assist ...
[NT] BEA Tuxedo Administration CGI Multiple Argument Issues
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...