Cisco Security Advisory: HTTP GET Vulnerability in AP1x00

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: HTTP GET Vulnerability in AP1x00 Revision 1.0 For Public Release 2003 July 28 16:00 UTC GMT ---------------------------------------------------------------------- Contents Summary Affected Products Details Impact Software...

HTTP GET Vulnerability in AP1x00

...

Cisco Aironet AP1x00 - GET Denial of Service

Cisco Aironet AP1x00 - GET Denial of Service source: https://www.securityfocus.com/bid/8290/info Cisco Aironet AP1x00 series devices are prone to a denial of service vulnerability upon receipt of a malformed HTTP GET request. Such a request will cause the device to reload. !/usr/bin/perl Cisco...

MyServer 0.4.1 - Remote Denial of Service

MyServer 0.4.1 - Remote Denial of Service source: https://www.securityfocus.com/bid/8010/info MyServer HTTP server has been reported prone to a remote denial of service attack. The issue presents itself, likely due to a lack of sufficient bounds checking, performed on arguments that are supplied...

MyServer 0.4.1 - Remote Denial of Service

source: https://www.securityfocus.com/bid/8010/info MyServer HTTP server has been reported prone to a remote denial of service attack. The issue presents itself, likely due to a lack of sufficient bounds checking, performed on arguments that are supplied via malicious HTTP GET requests. It has be...

WSMP3 0.0.x - Remote Information Disclosure

source: https://www.securityfocus.com/bid/7642/info A vulnerability has been reported in WsMp3. The problem occurs due to insufficient sanitization of HTTP GET requests. As a result, an attacker may be capable of accessing the contents of sensitive system resources. Information obtained through t...

Xeneo Web Server 2.2.9 - Denial of Service

Xeneo Web Server 2.2.9 - Denial of Service source: https://www.securityfocus.com/bid/7398/info Xeneo web server has been reported prone to denial of service vulnerability. It has been reported that a specifically crafted HTTP GET request containing over 4096 bytes of data will trigger this...

Xeneo Web Server 2.2.9 - Denial of Service

source: https://www.securityfocus.com/bid/7398/info Xeneo web server has been reported prone to denial of service vulnerability. It has been reported that a specifically crafted HTTP GET request containing over 4096 bytes of data will trigger this vulnerability. Although absolutely unconfirmed, d...

TW-WebServer 1.0 - Denial of Service (2)

// source: https://www.securityfocus.com/bid/7368/info It has been reported that TW-WebServer is prone to a denial of service vulnerability. Reportedly when an excessive quantity of data is sent to the TW-Webserver as part of a malicious HTTP GET request the server will fail. Although unconfirmed...

CVE-2002-0690

Format string vulnerability in McAfee Security ePolicy Orchestrator ePO 2.5.1 allows remote attackers to execute arbitrary code via an HTTP GET request with a URI containing format strings...

CVE-2002-0412

NTOP is affected by CVE-2002-0412 due to a format string vulnerability in the TraceEvent function prior to version 2.1. The issue allows remote attackers to execute arbitrary code by injecting format strings into syslog calls. Attack vectors include an HTTP GET request, or credentials supplied in...

CVE-2002-0748

Summary: CVE-2002-0748 affects LabVIEW Web Server 5.1.1–6.1. An HTTP GET request that ends with two newline characters (instead of the expected CR LF CR LF) can cause the web server to crash, yielding a denial of service. The public documents consistently describe this DoS condition as a crash tr...

CVE-2002-0945

CVE-2002-0945 describes a buffer overflow in SeaNox Devwex that can be triggered by a long HTTP GET request, allowing remote attackers to cause a denial of service and potentially execute arbitrary code. The available connected sources corroborate the basic impact (DoS and potential code executio...

CVE-2002-1079

Affects Abyss Web Server 1.0.3. Directory traversal allows remote read of arbitrary files via ..\ in HTTP GET requests; impact is partial confidentiality of data. No explicit remediation details are provided in the connected documents.

CVE-2002-0945

Buffer overflow in SeaNox Devwex allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long HTTP GET request...

CVE-2002-1079

Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote attackers to read arbitrary files via ..\ dot-dot backslash sequences in an HTTP GET request...

CVE-2002-1549

Buffer overflow in Light HTTPd lhttpd 0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request...

Light HTTPd 0.1 (Windows) - Remote Buffer Overflow

Buffer overflow in Light HTTPd lhttpd 0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: start end module name 00400000 0041a000 lhttpd C:\Documents and Settings\Administrator\My...

CVE-2002-0690

Format string vulnerability in McAfee Security ePolicy Orchestrator ePO 2.5.1 allows remote attackers to execute arbitrary code via an HTTP GET request with a URI containing format strings...

CVE-2002-1489

Buffer overflow in PlanetDNS PlanetWeb 1.14 and earlier allows remote attackers to execute arbitrary code via 1 an HTTP GET request with a long URL or 2 a request with a long method name...