903 matches found
CVE-2000-0778
IIS 5.0 allows remote attackers to obtain source code for .ASP files and other scripts via an HTTP GET request with a "Translate: f" header, aka the "Specialized Header" vulnerability...
CVE-2000-0561
Buffer overflow in WebBBS 1.15 allows remote attackers to execute arbitrary commands via a long HTTP GET request...
CVE-2000-0778
IIS 5.0 allows remote attackers to obtain source code for .ASP files and other scripts via an HTTP GET request with a "Translate: f" header, aka the "Specialized Header" vulnerability...
DoS против vqServer
Переполнение буфера при длинном HTTP-GET запросе...
Переполнение буфера в Viking Server
Классическое переполнение буфера в HTTP-GET запросе...
Translate:f summary, history and thoughts
Because Microsoft went the way of HIDING the actual mechanism of Translate:f from all of us original KB article is gone and new Security Bulletin is playing nasty game of downplaying the problem, i have decided to write follow up with sufficient information. HOW IT WORKS -------------------------...
Microsoft IIS 5.0 - Translate: f Source Disclosure (1)
Microsoft IIS 5.0 - Translate: f Source Disclosure 1 source: https://www.securityfocus.com/bid/1578/info Microsoft IIS 5.0 has a dedicated scripting engine for advanced file types such as ASP, ASA, HTR, etc. files. The scripting engines handle requests for these file types, processes them...
Microsoft IIS 5.0 - 'Translate: f' Source Disclosure (2)
source: https://www.securityfocus.com/bid/1578/info Microsoft IIS 5.0 has a dedicated scripting engine for advanced file types such as ASP, ASA, HTR, etc. files. The scripting engines handle requests for these file types, processes them accordingly, and then executes them on the server. It is...
Microsoft IIS 5.0 - 'Translate: f' Source Disclosure (1)
source: https://www.securityfocus.com/bid/1578/info Microsoft IIS 5.0 has a dedicated scripting engine for advanced file types such as ASP, ASA, HTR, etc. files. The scripting engines handle requests for these file types, processes them accordingly, and then executes them on the server. It is...
CVE-2000-0398
The CVE-2000-0398 issue affects Rockliffe MailSite Management Agent, due to a buffer overflow in wconsole.dll that can be triggered by a long query_string parameter in an HTTP GET request. This allows remote attackers to potentially execute arbitrary commands. Public documents identify the vulner...
CVE-2000-0398
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long querystring parameter in the HTTP GET request...
CVE-2000-0593
WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number...
CVE-2000-0561
Buffer overflow in WebBBS 1.15 allows remote attackers to execute arbitrary commands via a long HTTP GET request...
CVE-2000-0398
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long querystring parameter in the HTTP GET request...
vqsoft vqserver for windows 1.9.9 - Directory Traversal
vqsoft vqserver for windows 1.9.9 - Directory Traversal source: https://www.securityfocus.com/bid/1067/info Some versions of vqSoft vqServer for Windows are vulnerable to the common ../../ method of retrieving known files from outside of the web directory structure, accomplished by appending a...
vqsoft vqserver for windows 1.9.9 - Directory Traversal
source: https://www.securityfocus.com/bid/1067/info Some versions of vqSoft vqServer for Windows are vulnerable to the common ../../ method of retrieving known files from outside of the web directory structure, accomplished by appending a variable number of "../" and a known filename to an HTTP G...
CVE-1999-0744
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request...
CVE-1999-0744
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request...
CVE-1999-1523
Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request...
Microsoft IIS 4 (Windows NT) - Log Avoidance
Microsoft IIS 4 Windows NT - Log Avoidance // source: https://www.securityfocus.com/bid/191/info An http get request against an IIS4 server will not be logged if the request is longer than 10150 bytes long. / Compile with eg Visual C++ and link with wsock32.lib include include include int main in...