CVE-2001-0228

CVE-2001-0228 describes a directory traversal vulnerability in the GoAhead Web Server up to version 2.1 and earlier. An attacker can read arbitrary files by crafting a URL containing a .. sequence in an HTTP GET request. This vulnerability is documented across multiple feeds (NVD entry) and is no...

CVE-2001-0168

Buffer overflow in AT&T WinVNC Virtual Network Computing server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0...

CVE-2001-0202

Picserver web server allows remote attackers to read arbitrary files via a .. dot dot attack in an HTTP GET request...

CVE-2001-0206

Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. dot dot or ... into the requested pathname of an HTTP GET request...

CVE-2001-0223

Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERYSTRING HTTP GET request...

CVE-2001-0227

Buffer overflow in BiblioWeb web server 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP GET request...

CVE-2001-0228

Directory traversal vulnerability in GoAhead web server 2.1 and earlier allows remote attackers to read arbitrary files via a .. attack in an HTTP GET request...

WhitSoft SlimServe HTTPd 1.1 - 'GET' Denial of Service

source: https://www.securityfocus.com/bid/2451/info SlimServe HTTPd is a free HTTP Daemon maintained by WhitSoft Development. SlimServe is designed to provide basic HTTP services on the Microsoft Windows platform. A problem in the handling of HTTP GET requests could allow a remote user to deny...

Sapio WebReflex 1.55 - GET Denial of Service

Sapio WebReflex 1.55 - GET Denial of Service source: https://www.securityfocus.com/bid/2425/info WebReflex is a software package designed to operate a HTTP server off a cdrom, providing web hosting on Microsoft Windows systems. It is written and maintained by Sapio Design Ltd. A problem with the...

Sapio WebReflex 1.55 - GET Denial of Service

source: https://www.securityfocus.com/bid/2425/info WebReflex is a software package designed to operate a HTTP server off a cdrom, providing web hosting on Microsoft Windows systems. It is written and maintained by Sapio Design Ltd. A problem with the software could allow a denial of service to...

CVE-2000-0766

Buffer overflow in vqSoft vqServer 1.4.49 allows remote attackers to cause a denial of service or possibly gain privileges via a long HTTP GET request...

CVE-2000-1100

The vulnerability CVE-2000-1100 affects the PostACI webmail system where the default configuration installs /includes/global.inc in the web root, enabling remote reads of sensitive data (e.g., database usernames and passwords) via a direct HTTP GET. The NVD description confirms this exposure; no ...

CVE-2000-1118

CVE-2000-1118 affects 24Link 1.06 web server. An attacker can bypass access restrictions by prepending a path like "/+"/"." to the HTTP GET, causing unauthorized access. Root cause: improper handling of path prefixes in request parsing. Impact per CVSS: PARTIAL confidentiality, integrity, and ava...

CVE-2000-1048

Directory traversal vulnerability in the logfile service of Wingate 4.1 Beta A and earlier allows remote attackers to read arbitrary files via a .. dot dot attack via an HTTP GET request that uses encoded characters in the URL...

phf buffer overflow exploit for Linux-x86

Exploit for cgi platform in category web applications ========================================= phf buffer overflow exploit for Linux-x86 ========================================= / | phx.c -- phf buffer overflow exploit for Linux-ix86 | Copyright c 2000 by proton. All rights reserved. | | This...

CVE-2000-1048

Directory traversal vulnerability in the logfile service of Wingate 4.1 Beta A and earlier allows remote attackers to read arbitrary files via a .. dot dot attack via an HTTP GET request that uses encoded characters in the URL...

CVE-2000-1223

quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request...

Allaire JRun 3 - Directory Disclosure

source: https://www.securityfocus.com/bid/1830/info Allaire JRun is a web application development suite with JSP and Java Servlets. Each web application directory contains a WEB-INF directory, this directory contains information on web application classes, pre-compiled JSP files, server side...

CVE-2000-0766

Buffer overflow in vqSoft vqServer 1.4.49 allows remote attackers to cause a denial of service or possibly gain privileges via a long HTTP GET request...

CVE-2000-0778

IIS 5.0 allows remote attackers to obtain source code for .ASP files and other scripts via an HTTP GET request with a "Translate: f" header, aka the "Specialized Header" vulnerability...