Solaris 7 (sparc) : 110531-01

The remote host is missing Sun Security Patch number 110531-01 AnswerBook 1.4.2: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:24:08 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This...

Solaris 2.6 (sparc) : 110531-01

The remote host is missing Sun Security Patch number 110531-01 AnswerBook 1.4.2: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:24:08 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This...

Solaris 8 (i386) : 110537-01

The remote host is missing Sun Security Patch number 110537-01 AnswerBook 1.4.2x86: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:35:55 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ Thi...

Solaris 8 (i386) : 110538-01

The remote host is missing Sun Security Patch number 110538-01 AnswerBook 1.4.3x86: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:36:40 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ Thi...

Solaris 8 (sparc) : 110532-01

The remote host is missing Sun Security Patch number 110532-01 AnswerBook 1.4.3: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:35:09 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This...

Solaris 7 (i386) : 110538-01

The remote host is missing Sun Security Patch number 110538-01 AnswerBook 1.4.3x86: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:36:40 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ Thi...

Solaris 7 (sparc) : 110532-01

The remote host is missing Sun Security Patch number 110532-01 AnswerBook 1.4.3: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:35:09 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This...

Solaris 7 (i386) : 110537-01

The remote host is missing Sun Security Patch number 110537-01 AnswerBook 1.4.2x86: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:35:55 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ Thi...

Solaris 2.5.1 (sparc) : 110532-01

The remote host is missing Sun Security Patch number 110532-01 AnswerBook 1.4.3: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:35:09 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This...

Solaris 2.6 (i386) : 110537-01

The remote host is missing Sun Security Patch number 110537-01 AnswerBook 1.4.2x86: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:35:55 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ Thi...

Solaris 2.6 (i386) : 110538-01

The remote host is missing Sun Security Patch number 110538-01 AnswerBook 1.4.3x86: HTTP GET overflow allows code execution. Date this patch was last updated by Sun : Wed Nov 23 04:36:40 MST 2005 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ Thi...

CVE-2006-5715

CVE-2006-5715 affects Easy File Sharing (EFS) Easy Address Book 1.2 when run on NTFS. The vulnerability allows remote attackers to read arbitrary files under the web root by appending the ADS suffix ::$DATA to an HTTP GET, accessing an alternate data stream. The description confirms the root caus...

CVE-2006-5596

Directory traversal vulnerability in the SSL server in AEP Smartgate 4.3b allows remote attackers to download arbitrary files via ..\ dot dot backslash sequences in an HTTP GET request...

CVE-2006-5112

CVE-2006-5112 reflects a buffer overflow in the NaviCOPA Web Server 2.01 caused by handling of long HTTP GET requests, enabling remote code execution. Connected sources confirm a public proof-of-concept/exploit vector: a Metasploit module named navicopa_get_overflow (and related exploit reference...

CVE-2006-5112

Buffer overflow in InterVations NaviCOPA Web Server 2.01 allows remote attackers to execute arbitrary code via a long HTTP GET request...

CVE-2006-4450

usercpavatar.php in PHPBB 2.0.20, when avatar uploading is enabled, allows remote attackers to use the server as a web proxy by submitting a URL to the avatarurl parameter, which is then used in an HTTP GET request...

NewsLetter <= 3.5 (NL_PATH) Remote File Inclusion Vulnerability

No description provided by source. ================================================================= NewsLetter v3.5 = NLPATH Remote File Inclusion Exploit ================================================================ | Critical Level : Dangerous | | Venedor site : http://knusperleicht.at/ | |...

CVE-2006-3758

CVE-2006-3758 pertains to MyBB (aka MyBulletinBoard) 1.1.4 where inc/init.php in Archive Mode (Light) calls PHP’s extract with EXTR_OVERWRITE on HTTP POST/GET variables, allowing a remote attacker to overwrite arbitrary variables. The vulnerability is demonstrated via an SQL injection using the _...

security flaw

Cross-site scripting XSS vulnerability in Zope 2.10.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a HTTP GET request...

CVE-2006-3534

The SHOUTcast DSP server is affected by two CVEs: CVE-2006-3534 (pre-1.9.6) and CVE-2006-3535 (pre-1.9.7). The underlying issue is a directory traversal filter bug that decodes input after treating encoded sequences, enabling remote attackers to read arbitrary files via encoded dot-dot (%2E%2E) i...