1170 matches found
CVE-2002-0440
Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients...
CVE-2002-0440
CVE-2002-0440 affects Trend Micro InterScan VirusWall HTTP proxy 3.6. The issue arises when the product is configured with the Skip scanning if Content-length equals 0 option enabled: a malicious HTTP server can bypass content scanning by sending a Content-length header of 0, which many HTTP cl...
Compaq Web-enabled Management Software HTTP Server Arbitrary Traffic Proxy
The remote Compaq Web Management Agent install can be used as an HTTP proxy. An attacker can use this to bypass firewall rules or hide the source of web-based attacks. Written by H D Moore Changes by Tenable: - Revised plugin title, changed family 1/21/2009 include"compat.inc"; ifdescription...
HTTP proxy default configurations allow arbitrary TCP connections
Overview Multiple vendors' HTTP proxy services use insecure default configurations that could allow an attacker to make arbitrary TCP connections to internal hosts or to external third-party hosts. Description HTTP proxy services commonly support the HTTP CONNECT method, which is designed to crea...
CVE-2002-0133
Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 long header fields to the HTTP proxy, or 2 a long string to the telnet proxy...
VirusWall HTTP proxy content scanning circumvention
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 FOR PUBLIC RELEASE - ------------------------------------------------------------------------ Inside Security GmbH Vulnerability Notification Revision 0.3 2002-03-10 - ------------------------------------------------------------------------ The latest...
Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass
Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass // source: https://www.securityfocus.com/bid/4265/info Trend Micro InterScan VirusWall is a high performance internet gateway virus scanning package. It is capable of scanning incoming content over HTTP, SMTP and FTP for viruses...
CVE-2002-0058
Vulnerability in Java Runtime Environment JRE allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in 1 Netscape 6.0 through 6.1 and 4.79 and earlier, 2 Microsoft VM...
Java HTTP proxy vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===Java HTTP proxy vulnerability=== Reference wal-01 Version 1.0 Date March 05, 2002 ===Cross references Sun Security Bulletin 00216 Microsoft Security Bulletin MS02-013 Vulnerability identifier CAN-2002-0058 under review...
Avirt Proxy Buffer Overflow Vulnerabilities
Strumpf Noir Society Advisories ! Public release ! -- -= Avirt Proxy Buffer Overflow Vulnerabilities =- Release date: Thursday, January 17, 2002 Introduction: The Utah, USA-based company Avirt specializes in the development of inter-networking and sharing technologies. As such, it maintains the...
SapporoWorks Black JumboDog 2.6.4/2.6.5 - HTTP Proxy Buffer Overflow
// source: https://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long "expires", "if-modified-since", and "LastModified" strings containing executable code....
SapporoWorks Black JumboDog 2.6.42.6.5 - HTTP Proxy Buffer Overflow
SapporoWorks Black JumboDog 2.6.42.6.5 - HTTP Proxy Buffer Overflow // source: https://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long "expires",...
Raptor Firewall 6.5 HTTP Proxy Detection
Raptor FW 6.5 appears to be running in front of the remote web server. By sending an invalid HTTP request to a web server behind the Raptor firewall, the HTTP proxy itself will respond. The server banner of Raptor FW version 6.5 is always 'Simple, Secure Web Server 1.1'. A remote attacker could u...
CVE-2001-0129
Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request...
Проблемы в Compaq Management Software (HTTP proxy)
Web-Сервис установленный на порт 2301 работает как HTTP-прокси при запросе внешнего документа...
CVE-1999-0923
Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls...
CVE-2001-0129
Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request...
CVE-1999-0923
Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls...
DST2K0031: DoS in BrowseGate(Home) v2.80(H)
============================================================================ Delphis Consulting Plc ============================================================================ Security Team Advisories 18/09/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...
CVE-2000-0376
Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request...