Generic HTTP SQLi (Web Application) - Active Check

This script attempts to use SQL injection SQLi techniques on CGI / web application scripts. SPDX-FileCopyrightText: 2002 John Lampe Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2005-3182

Buffer overflow in the HTTP management interface for GFI MailSecurity 8.1 allows remote attackers to execute arbitrary code via long headers such as 1 Host and 2 Accept in HTTP requests. NOTE: the vendor suggests that this issues is "in an underlying Microsoft technology" which, if true, could me...

CVE-2005-3190

Buffer overflow in Computer Associates CA iGateway 3.0 and 4.0 before 4.0.050623, when running in debug mode, allows remote attackers to execute arbitrary code via HTTP GET requests...

Fedora Core 3 : cups-1.1.22-0.rc1.8.7 (2005-908)

A bug was found in the way CUPS processes malformed HTTP requests. It is possible for a remote user capable of connecting to the CUPS daemon to issue a malformed HTTP GET request which will cause CUPS to enter an infinite loop. This is CVE-2005-2874. Note that Tenable Network Security has extract...

RHEL 4 : cups (RHSA-2005:772)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2005:772 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for UNIXR operating systems. A bug was found in the way CUPS processes malform...

Symantec Antivirus Scan Engine: Web Service Administrative Interface Buffer Overflow

SUMMARY The remote exploitation of a buffer overflow vulnerability in the web-based Administrative Interface of the Symantec AntiVirus Scan Engine product could potentially allow remote attackers to execute arbitrary code on a targeted system Risk Impact HIGH Remote Access | Yes ---|--- Local...

[SA16975] sblim-sfcb Multiple Requests Denial of Service Vulnerability

TITLE: sblim-sfcb Multiple Requests Denial of Service Vulnerability SECUNIA ADVISORY ID: SA16975 VERIFY ADVISORY: http://secunia.com/advisories/16975/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: sblim-sfcb 0.x http://secunia.com/product/5777/ DESCRIPTION: A vulnerability has...

sblim-sfcb DoS

Resource exhaustion on large number of HTTP requests with oversized headers...

CVE-2005-2703

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to modify HTTP headers of XML HTTP requests via XMLHttpRequest, and possibly use the client to exploit vulnerabilities in servers or proxies, including HTTP request smuggling and HTTP request splitting...

punBB < 1.2.7 Multiple SQL Injection Vulnerabilities

Binary data 3220.prm...

Savant Web Server 3.1 - Remote Buffer Overflow (2)

!/usr/local/bin/perl Savant Buffer Overflow Exploit ---------------------------------- Infam0us Gr0up - Securiti Research Tested on Windows2000 SP4 Win NT Info: infamous.2hell.com Vendor URL: http://savant.sourceforge.net $ARGC=@ARGV; if $ARGC !=3 print "\nUsage: $0 remote IP Port\n"; print...

CVE-2005-2646

Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to cause a denial of service or read files via unknown vectors involving crafted HTTP requests...

CVE-2005-2646

CVE-2005-2646 refers to an unknown vulnerability in Xerox MicroServer Web Server within Xerox Document Centre models 220–265, 332, 340, 420–490, and 535–555. The issue reportedly allows remote attackers to cause a denial of service or to read files via crafted HTTP requests; the exact vectors, af...

CVE-2005-2646

Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to cause a denial of service or read files via unknown vectors involving crafted HTTP requests...

CVE-2004-2381

HttpRequest.java in Jetty HTTP Server before 4.2.19 allows remote attackers to cause denial of service memory usage and application crash via HTTP requests with a large Content-Length...

CVE-2004-2381

CVE-2004-2381 affects the Jetty HTTP Server prior to 4.2.19. The vulnerability arises in HttpRequest.java handling of HTTP requests with a large Content-Length, allowing remote attackers over the network to cause memory usage growth and a denial of service (application crash). Affected products a...

apache -- http request smuggling

A Watchfire whitepaper reports an vulnerability in the Apache webserver. The vulnerability can be exploited by malicious people causing cross site scripting, web cache poisoining, session hijacking and most importantly the ability to bypass web application firewall protection. Exploiting this...

Oracle Reports Server 6.0.8/9.0.x - XML File Disclosure

source: https://www.securityfocus.com/bid/14311/info Oracle Reports Server may allow remote attackers to disclose parts of arbitrary XML files. Reportedly, the server fails to restrict users from accessing parts of arbitrary XML files when handling specially crafted HTTP GET requests. All version...

CVE-2000-1230

The CVE-2000-1230 entry concerns Phorum 3.0.7, where a backdoor in auth.php3 allows remote attackers to access restricted web pages by sending an HTTP request with the PHP_AUTH_USER parameter set to boogieman. This describes a vulnerable component (auth.php3) and a clear attack vector (HTTP-based...

CVE-2002-2009

Affected software: Apache Tomcat 4.0.1. Vulnerability: Information disclosure where remote attackers can obtain the web root/pathname by triggering error pages for JSP requests that use a leading sequence (+/, &gt;/,