Apple Mac OS X Server 10.0 Overload Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/306/info A vulnerability in the MacOS X Server may crash it while under heavy load. The vulnerability appears while stress testing a server running the Apache web server and 32 or more process are concurntly doing HTTP GE...

Polycom SoundPoint IP Devices Denial of Service

No description provided by source. Source: http://packetstormsecurity.org/files/view/97948/polycomsoundpoint-dos.txt Hello, Polycom SoundPoint IP devices IP phones are vulnerable to Denial of Service attacks. Sending HTTP GET request with broken Authorization header effect a device restart after ...

DiGi WWW Server 1 Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10228/info The DiGi WWW Server has been reported to contain a remote denial of service vulnerability. It has been reported that when the server receives a malformed HTTP GET request, the web server process will consume...

Vicomsoft RapidCache Server 2.0/2.2.6 Host Argument Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9427/info It has been reported that RapidCache server may be prone to a denial of service vulnerability that may allow an attacker to cause the server to crash or hang. The issue presents itself when an attacker sends an...

Mercantec SoftCart CGI Overflow

No description provided by source. $Id: mercantecsoftcart.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...

GoAhead WebServer 2.1.x Directory Management Policy Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9450/info GoAhead WebServer is prone to a vulnerability that may permit remote attackers to bypass directory management policy. It is reported that certain syntax may be used in HTTP GET requests to bypass the policy for...

DreamBox DM500(+) - Arbitrary File Download Vulnerability

No description provided by source. DreamBox DM500+ Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected version: DM500, DM500+, DM500HD and DM500S Summary: The Dreambox is a series of Linux-powered DVB satellite,...

Proxy-Pro Professional GateKeeper 4.7 GET Request Overflow

No description provided by source. $Id: proxyprohttpget.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

Hasbani-WindWeb/2.0 - HTTP GET Remote DoS

No description provided by source. / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | | \ / | |/ | |/ / \ / \ | / \ // | Y / ^ /\ | //\ \ /| / / || /\ | \ | \ / / / / 26\09\05 / || / / i Title: Hasbani-WindWeb/2.0 - HTTP GET Remote DoS i Discovered by: Expanders i Exploit by: Expanders What...

WhitSoft SlimServe HTTPD 1.1 Get Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2451/info SlimServe HTTPd is a free HTTP Daemon maintained by WhitSoft Development. SlimServe is designed to provide basic HTTP services on the Microsoft Windows platform. A problem in the handling of HTTP GET requests...

tinyserver 1.1 - Directory Traversal

No description provided by source. source: http://www.securityfocus.com/bid/9485/info TinyServer is prone to multiple vulnerabilities. A directory traversal issue is present in TinyServer that could allow a remote user to view or download any file to which the server has access. A denial of servi...

WP Comment Remix 1.4.3 - Remote SQL Injection Exploit

No description provided by source. ?php / WP Comment Remix 1.4.3 SQL Injection Proof of Concept By g30rg3x g30rg3xatchxsecuritydotorg Advisory: http://chxsecurity.org/advisories/adv-3-full.txt PoC Mirror: http://chxsecurity.org/proof-of-concepts/wp-comment-remix-143.zip Attention: This is a...

Hummingbird Collaboration Application Cookie Internal Network Information Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/16195/info Hummingbird Enterprise Collaboration is prone to multiple vulnerabilities. The following specific issues were identified: The application reportedly allows remote attackers to upload arbitrary HTML files and...

InternetNow ProxyNow 2.6/2.75 Multiple Stack and Heap Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9500/info ProxyNow has been reported to be prone to multiple overflow vulnerabilities that may allow an attacker to execute arbitrary code in order to gain unauthorized access to a vulnerable system. The vulnerabilities...

Asn Guestbook 1.5 - header.php version Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/14356/info Asn Guestbook is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issu...

SurgeLDAP 1.0 d Path Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8406/info SurgeLDAP is prone to a path disclosure vulnerability. It is possible to gain access to sensitive path information by issuing an HTTP GET request for an invalid resource. This issue exists in the web server...

Microsoft IIS 5.0 "Translate: f" Source Disclosure Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/1578/info Microsoft IIS 5.0 has a dedicated scripting engine for advanced file types such as ASP, ASA, HTR, etc. files. The scripting engines handle requests for these file types, processes them accordingly, and then...

Cerbere Proxy Server 1.2 Long Host Header Field Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11085/info Cerbère Proxy server is reported prone to a remote denial of service vulnerability. This issue presents itself when a remote attacker sends a malformed HTTP GET request to the server. A remote attacker may caus...

fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC

No description provided by source. +------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker |...

Gordano Messaging Suite 9.0 WWW.exe Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8576/info It has been reported that Gordano Messaging Suite may be prone to a denial of service issue allowing a remote attacker to send malformed HTTP GET requests to cause the WWW.exe process to crash. The problme may...