1746 matches found
CVE-2001-0252
CVE-2001-0252 affects iPlanet (Netscape) Enterprise Server 4.1. A remote attacker can trigger a denial of service by sending a long HTTP GET request containing many "/../" sequences, leading to server instability. The vulnerability is described across multiple sources (NVD/CVE entries and Nessus/...
CVE-2000-0593
WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number...
CVE-2001-0836
Buffer overflow in Oracle9iAS Web Cache 2.0.0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request...
CVE-2001-0252
iPlanet formerly Netscape Enterprise Server 4.1 allows remote attackers to cause a denial of service via a long HTTP GET request that contains many "/../" dot dot sequences...
Galacticomm Worldgroup 3.20 - Remote Web Server Denial of Service
Galacticomm Worldgroup 3.20 - Remote Web Server Denial of Service // source: https://www.securityfocus.com/bid/4186/info Galacticomm Worldgroup is a community building package of both client and server software for Microsoft Windows. Worldgroup is based on BBS software, and includes web and ftp...
Переполнения буфера в WorldGroup (buffer overflow)
Переполнения буфера в ftp LIST и http GET...
Galacticomm Worldgroup 3.20 - Remote Web Server Denial of Service
// source: https://www.securityfocus.com/bid/4186/info Galacticomm Worldgroup is a community building package of both client and server software for Microsoft Windows. Worldgroup is based on BBS software, and includes web and ftp servers. A vulnerability has been reported in the web server includ...
CVE-2001-1465
SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both data elements...
Microsoft IIS 5.0 - False Content-Length Field Denial of Service
source: https://www.securityfocus.com/bid/3667/info Microsoft IIS 5.0 may be prone to a denial of service condition when sent a specially crafted malformed HTTP GET header. If an IIS 5.0 web server is sent a crafted HTTP GET request which contains a falsified and excessive "Content-Length" field,...
CVE-2001-0836
Buffer overflow in Oracle9iAS Web Cache 2.0.0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request...
CVE-2001-0868
Red Hat Stronghold 2.3 to 3.0 allows remote attackers to retrieve system information via an HTTP GET request to 1 stronghold-info or 2 stronghold-status...
CVE-2001-0868
Red Hat Stronghold 2.3 to 3.0 allows remote attackers to retrieve system information via an HTTP GET request to 1 stronghold-info or 2 stronghold-status...
CVE-2001-0821
DCShop 1.002 beta default configuration exposes sensitive files in the cgi-bin directory (orders.txt, auth_user_file.txt), allowing remote reads via HTTP GET. Connected OpenVAS entry corroborates a vulnerable DCShop CGI release and suggests access to admin passwords, current/pending transactions,...
EUVD-2001-0805
The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, which could allow remote attackers to read sensitive data via an HTTP GET request for 1 orders.txt or 2 authuserfile.txt...
CVE-2001-1287
Buffer overflow in Web Calendar in Ipswitch IMail 7.04 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request...
Получение реального IP сервера Lotus Domino (information leakage)
С помощью запроса GET //////////// HTTP/1.0 можно получить сведения о реальном IP Сервера...
CVE-2001-0647
CVE-2001-0647 affects Orange Web Server 2.1 (GoAhead-based). A malformed HTTP GET request that does not include an HTTP version can cause a remote denial of service, potentially crashing the server. Affected component is the HTTP request handling; the vulnerability is leveraged by sending a craft...
CVE-1999-1068
Oracle Webserver 2.1 is affected when serving PL/SQL stored procedures. A long HTTP GET request can trigger a denial-of-service by crashing the remote web server, via the cgi /ews-bin/fnord pathway. The vulnerability is documented in CVE-1999-1068 and is reflected in the Nessus plugin OWS_OVERFLO...
CVE-1999-1412
CVE-1999-1412 describes a DoS risk from an interaction between MacOS X 1.0 and Apache HTTP server, where a flood of HTTP GET requests to CGI programs can spawn many processes on affected systems. Connected sources provide concrete details indicating the issue relates to the Apache httpd component...
CVE-1999-1523
CVE-1999-1523 concerns the Sambar Web Server 4.2.1. A buffer overflow in the HTTP GET handling allows a remote attacker to cause a denial of service and possibly execute arbitrary commands. The vulnerability is remote, with no authentication required, and is enabled by sending a long HTTP GET req...