MailPost vulnerable file system information disclosure via HTTP GET request

Overview A vulnerability is reported to exist in MailPost version 5.1.1sv and possibly earlier versions that may permit a remote attacker to verify the existance of files anywhere on the local system. Description According to the ProCheckUp report, MailPost contains a vulnerability that may permi...

MailPost vulnerable to cross-site scripting in the 'append' variable passed to the file as part of an HTTP GET request

Overview A cross-site scripting vulnerability is reported to exist in MailPost version 5.1.1sv and possibly earlier versions. Description According to a report by ProCheckUp, MailPost is vulnerable to a Cross-Site Scripting attack via the 'append' variable. The 'append variable is passed as part ...

NetworkActiv Web Server Encoded URL Request Remote DoS

The remote host is running NetworkActive Web Server - an alternative web server. There is a vulnerability in the remote version of this software that could allow an attacker to cause a denial of service against the remote server by sending an HTTP GET request containing a '%25' character...

CVE-2002-1549

Buffer overflow in Light HTTPd lhttpd 0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request...

Abyss < 1.1.6 httpd GET Request Remote Overflow

Binary data 2172.prm...

Pi3Web Webserver < 2.0.3 HTTP GET Request Overflow DoS

Binary data 2184.prm...

WebServer 4D HTTP GET Request Remote Overflow

Binary data 2186.prm...

Dune Web Server HTTP GET Request Remote Overflow

Binary data 2179.prm...

Password File Obtained by HTTP (GET)

Binary data 1879.prm...

RealNetworks Helix Universal Server < 9.0.3 HTTP GET Request DoS

Binary data 1214.prm...

Abyss Web Server < 1.1.4 HTTP GET Header Remote DoS

Binary data 1475.prm...

WebsitePro <2.5 HTTP GET Request Remote Overflow

Binary data 1449.prm...

Mercantec SoftCart 4.00b CGI Overflow

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

Mercantec SoftCart 4.00b - CGI Overflow (Metasploit)

Mercantec SoftCart 4.00b - CGI Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Icecast < 1.3.12-1 HTTP GET Request Remote Overflow

Binary data 2141.prm...

CVE-2004-0684

The CVE-2004-0684 entry concerns WebSphere Edge Server 5.02’s Edge Component Caching Proxy when JunctionRewrite is enabled. A remote attacker can trigger a denial-of-service by sending an HTTP GET request without parameters. The description indicates potential impact to availability but does not ...

Orenosv HTTP/FTP Server 0.5.9 - GET Denial of Service (3)

source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both the HTTP and FTP daemons will stop...

Orenosv HTTP/FTP Server 0.5.9 - GET Denial of Service (2)

source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both the HTTP and FTP daemons will stop...

Orenosv HTTPFTP Server 0.5.9 - GET Denial of Service (3)

Orenosv HTTPFTP Server 0.5.9 - GET Denial of Service 3 source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is...

CVE-2004-2033

Orenosv 0.5.9f allows remote attackers to cause a denial of service crash via a long HTTP GET request...