[SECURITY] Fedora 15 Update: httpcomponents-client-4.1.1-2.fc15

HttpClient is a HTTP/1.1 compliant HTTP agent implementation based on httpcomponents HttpCore. It also provides reusable components for client-side authentication, HTTP state management, and HTTP connection management. HttpComponents Client is a successor of and replacement for Commons HttpClient...

OpenJDK HttpURLConnection allows arbitrary request headers (6961084,6980004)

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the...

OpenJDK HttpURLConnection allows arbitrary request headers (6961084,6980004)

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the...

Apache-Mod-JK

Stack-based buffer overflow in the mapuritoworker function native/common/jkuriworkermap.c in modjk.so for Apache Tomcat JK Web Server Connector 1.2.19 and 1.2.20, as used in Tomcat 4.1.34 and 5.5.20, allows remote attackers to execute arbitrary code via a long URL that triggers the overflow in a...

HP OpenView Network Node Manager (OV NNM) - 'getnnmdata.exe' CGI Invalid Hostname Remote Code Execution

Exploit Title: HP OpenView NNM getnnmdata.exe CGI Invalid Hostname Remote Code Execution Date: 2010.07.02 Author: S2 Crew Hungary Software Link: hp.com Version: 7.53 Tested on: Windows 2003 CVE: CVE-2010-1555 Code : !/usr/bin/python import struct import socket import httplib import urllib eh =...

Novell eDirectory 8.8 SP5 iConsole Buffer Overflow

Exploit for unknown platform in category remote exploits ================================================== Novell eDirectory 8.8 SP5 iConsole Buffer Overflow ================================================== Title: Novell eDirectory 8.8 SP5 iConsole Buffer Overflow CVE-ID: OSVDB-ID: Author:...

Novell eDirectory 8.8 SP5 - iConsole Buffer Overflow

Novell eDirectory 8.8 SP5 - iConsole Buffer Overflow !/usr/bin/python Novell eDirectory 8.8 SP5 iConsole BOF Vulnerability found by Hellcode Labs, Original POC http://downloads.securityfocus.com/vulnerabilities/exploits/36815.pl Exploit coded by Matteo Memelli | ryujin A-T offensive-security.com...

cP Creator 2.7.1 (Cookie tickets) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/python cP Creator v2.7.1 Remote Sql Injection AUTHOR : Sina Yazdanmehr R3d.W0rm Discovered by : Sina Yazdanmehr R3d.W0rm Our Site : http://IrCrash.com - Coming Soon Again My Official WebSite : http://R3dW0rm.ir IRCRASH Team Members : Khashayar Fereidan...

TWiki Version Detection

Detection of TWiki. The script sends a HTTP connection request to the server and attempts to detect the presence of TWiki and to extract its version. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...

Mandriva Update for mpg123 MDKSA-2007:032 (mpg123)

Check for the Version of mpg123 OpenVAS Vulnerability Test Mandriva Update for mpg123 MDKSA-2007:032 mpg123 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

TGS CMS 0.3.2r2 Remote Code Execution Exploit

No description provided by source. TGS CMS Remote Code Execution Exploit by 0in from Dark-Coders Group! www.dark-coders.pl Contact: 0indotemailatgmaildotcom Greetings to:dieangel,suN8Hclf,m4r1usz,cOndemned,str0ke Dork:NULL - because "You cannot kill what you did not create" - Duality by Slipknot...

Novell eDirectory Host Environment Service (dhost.exe) HTTP Connection Header DoS

The remote host is running eDirectory, a directory service software from Novell. The installed version of eDirectory is affected by a denial of service issue. By sending an HTTP request with a specially crafted 'Connection' header to the server, an unauthenticated attacker may be able to trigger ...

CVE-2007-5778

Mobile Spy 1 stores login credentials in cleartext under the RetinaxStudios registry key, and 2 sends login credentials and log data over a cleartext HTTP connection, which allows attackers to obtain sensitive information by reading the registry or sniffing the network...

Information disclosure

Mobile Spy 1 stores login credentials in cleartext under the RetinaxStudios registry key, and 2 sends login credentials and log data over a cleartext HTTP connection, which allows attackers to obtain sensitive information by reading the registry or sniffing the network...

CVE-2007-5778

Mobile Spy 1 stores login credentials in cleartext under the RetinaxStudios registry key, and 2 sends login credentials and log data over a cleartext HTTP connection, which allows attackers to obtain sensitive information by reading the registry or sniffing the network...

Design/Logic Flaw

The httpopen function in httpget.c in mpg123 before 0.64 allows remote attackers to cause a denial of service infinite loop by closing the HTTP connection early...

CVE-2007-0578

The httpopen function in httpget.c in mpg123 before 0.64 allows remote attackers to cause a denial of service infinite loop by closing the HTTP connection early...

CVE-2007-0578

CVE-2007-0578 affects mpg123 (http_open in httpget.c) where closing the HTTP connection early can cause an infinite loop, leading to DoS. Vulnerable version: mpg123 before 0.64. Public references in Mandriva (MDKSA-2007:032) indicate patches were released to fix the issue; other sources (SUSE, NV...

CVE-2007-0578

The httpopen function in httpget.c in mpg123 before 0.64 allows remote attackers to cause a denial of service infinite loop by closing the HTTP connection early...

MS KB821724: ISA Server 2000 May Send Basic Credentials Over an External HTTP Connection

The remote ISA server is configured in such a way that it may send Basic authentication credentials over an insecure connection. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid18491; scriptversion"1.19"; scriptcvsdate"Date: 2018/11/15 20:50:28"; scriptbugtraqid13955;...