IBM HTTP Server 1.3 AfpaCache/WebSphereNet.Data DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2175/info IBM HTTP Server contains AfpaCache directive which turns the Fast Response Cache Accelerator function on or off. WebSphere is a series of applications which are built upon IBM HTTP Server. Both IBM HTTP Server a...

Apache <= 2.0.52 HTTP GET request Denial of Service Exploit

No description provided by source. !/usr/bin/perl Based on - apache-squ1rt.c exploit. Original credit goes to Chintan Trivedi on the FullDisclosure mailing list: http://seclists.org/lists/fulldisclosure/2004/Nov/0022.html More info - http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0942...

DiGi WWW Server 1 Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10228/info The DiGi WWW Server has been reported to contain a remote denial of service vulnerability. It has been reported that when the server receives a malformed HTTP GET request, the web server process will consume...

WhitSoft SlimServe HTTPD 1.1 Get Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2451/info SlimServe HTTPd is a free HTTP Daemon maintained by WhitSoft Development. SlimServe is designed to provide basic HTTP services on the Microsoft Windows platform. A problem in the handling of HTTP GET requests...

Mercantec SoftCart 4.00b - CGI Overflow

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

DreamBox DM800 Arbitrary File Download Vulnerability

No description provided by source. Exploit Title: title Date: date Author: ShellVision Version: dm800 = 1.6rc3 Tested on: dm800 Release 4.6.0 2009-12-24 DreamBox DM800 Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected...

DreamBox DM500(+) - Arbitrary File Download Vulnerability

No description provided by source. DreamBox DM500+ Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected version: DM500, DM500+, DM500HD and DM500S Summary: The Dreambox is a series of Linux-powered DVB satellite,...

Allaire JRun 3 Directory Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1830/info Allaire JRun is a web application development suite with JSP and Java Servlets. Each web application directory contains a WEB-INF directory, this directory contains information on web application classes,...

Max Feoktistov Small HTTP server 1.212 Buffer Overflow

No description provided by source. source: http://www.securityfocus.com/bid/1355/info A buffer overflow is present in certain versions of the Small HTTP Server . The overflow in question is triggered by an overlong 65000 or more characters malformed HTTP GET request to the webserver...

Hummingbird Collaboration Application Cookie Internal Network Information Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/16195/info Hummingbird Enterprise Collaboration is prone to multiple vulnerabilities. The following specific issues were identified: The application reportedly allows remote attackers to upload arbitrary HTML files and...

Eugene Ajenti 'respond_error' Multiple Cross-Site Scripting Vulnerabilities

Eugene Ajenti is prone to multiple cross-site scripting vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Cisco Aironet AP1x00 Malformed HTTP GET Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8290/info Cisco Aironet AP1x00 series devices are prone to a denial of service vulnerability upon receipt of a malformed HTTP GET request. Such a request will cause the device to reload. !/usr/bin/perl Cisco Global...

Gitlist RCE Vulnerability

Gitlist is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

openSIS 5.3 Cross Site Request Forgery

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 openSIS 4.5 - 5.3 Cross Site Request Forgery Vulnerability ========================================================== Author: Ubani Anthony Balogun Reported: June 26, 2014 Product Description: - -------------------- openSIS, is a free student...

Assesi 'bg' Parameter SQL Injection vulnerability

Assesi is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : firefox / seamonkey / thunderbird (openSUSE-SU-2014:0212-1)

Mozilla Firefox was updated to version 27. Mozilla SeaMonkey was updated to 2.24, fixing similar issues as Firefox 27. Mozilla Thunderbird was updated to 24.3.0, fixing similar issues as Firefox 27. The Firefox 27 release brings TLS 1.2 support as a major security feature. It also fixes following...

SafeNet Sentinel Protection Server and Sentinel Keys Server Directory Traversal (Apr 2014) - Active Check

SafeNet Sentinel Protection Server and Sentinel Keys Server are prone to a directory traversal vulnerability because they fail to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

Vulnerability Allows Anyone to DDoS Websites Using Facebook Servers

Reading a 'Note' created by anyone on the Facebook could trick you automatically to do malicious attacks against others unknowingly. A Security researcher Chaman Thapa, also known as chr13 claims that the flaw resides in 'Notes' section of the most popular social networking site - Facebook, that...

CVE-2014-2976

Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...

Directory traversal

Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...