903 matches found
Polycom SoundPoint IP Devices Denial of Service
No description provided by source. Source: http://packetstormsecurity.org/files/view/97948/polycomsoundpoint-dos.txt Hello, Polycom SoundPoint IP devices IP phones are vulnerable to Denial of Service attacks. Sending HTTP GET request with broken Authorization header effect a device restart after ...
DiGi WWW Server 1 Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10228/info The DiGi WWW Server has been reported to contain a remote denial of service vulnerability. It has been reported that when the server receives a malformed HTTP GET request, the web server process will consume...
Mercantec SoftCart CGI Overflow
No description provided by source. $Id: mercantecsoftcart.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
InternetNow ProxyNow 2.6/2.75 Multiple Stack and Heap Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/9500/info ProxyNow has been reported to be prone to multiple overflow vulnerabilities that may allow an attacker to execute arbitrary code in order to gain unauthorized access to a vulnerable system. The vulnerabilities...
SurgeLDAP 1.0 d Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8406/info SurgeLDAP is prone to a path disclosure vulnerability. It is possible to gain access to sensitive path information by issuing an HTTP GET request for an invalid resource. This issue exists in the web server...
Loom Software SurfNow 1.x/2.x Remote HTTP GET Request Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9519/info A problem has been identified in the handling of specific types of requests by SurfNOW. Upon receiving specially crafted HTTP GET requests, it is possible for a remote attacker to crash a vulnerable...
Cerbere Proxy Server 1.2 Long Host Header Field Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11085/info Cerbère Proxy server is reported prone to a remote denial of service vulnerability. This issue presents itself when a remote attacker sends a malformed HTTP GET request to the server. A remote attacker may caus...
Snowblind Web Server 1.0/1.1 HTTP GET Request Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7619/info Snowblind Web Server has been reported prone to a buffer overflow vulnerability. The vulnerability exists when the web server attempts to process HTTP requests of excessive length. Although unconfirmed, this...
Macallan Mail Solution Macallan Mail Solution 2.8.4 .6 (Build 260) - Web Interface Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9646/info A vulnerability has been reported in Macallan Mail Solution that may permit remote attackers to bypass authentication for the web interface. This may be exploited by submitting a specially crafted HTTP GET reque...
Galacticomm Worldgroup 3.20 Remote Web Server Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4186/info Galacticomm Worldgroup is a community building package of both client and server software for Microsoft Windows. Worldgroup is based on BBS software, and includes web and ftp servers. A vulnerability has been...
Logics Software LOG-FT Arbitrary File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12998/info LOG-FT is reported prone to an arbitrary file disclosure vulnerability. This issue results from an access validation error and can allow a remote attacker to disclose sensitive data. It is reported that an...
profitcode software payprocart 3.0 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13006/info ProfitCode Software PayProCart may allow a remote attacker to carry out directory traversal attacks. It is reported that this issue can be exploited by issuing a specially crafted HTTP GET request and supplying...
Eugene Ajenti 'respond_error' Multiple Cross-Site Scripting Vulnerabilities
Eugene Ajenti is prone to multiple cross-site scripting vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Invision Power Board 1.x Unauthorized Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13802/info Invision Power Board is affected by an unauthorized access vulnerability. Reportedly, a moderator can edit forum posts owned by other moderators through an HTTP GET request without providing sufficient...
Gitlist RCE Vulnerability
Gitlist is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Assesi 'bg' Parameter SQL Injection vulnerability
Assesi is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SafeNet Sentinel Protection Server and Sentinel Keys Server Directory Traversal (Apr 2014) - Active Check
SafeNet Sentinel Protection Server and Sentinel Keys Server are prone to a directory traversal vulnerability because they fail to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...
CVE-2014-2976
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...
Directory traversal
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...
EUVD-2014-2998
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...