Lucene search
K

1170 matches found

Cvelist
Cvelist
added 2002/06/11 4:0 a.m.20 views

CVE-2002-0440

Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients...

6.5AI score0.02618EPSS
Exploits0References4
CVE
CVE
added 2002/06/11 4:0 a.m.42 views

CVE-2002-0440

CVE-2002-0440 affects Trend Micro InterScan VirusWall HTTP proxy 3.6. The issue arises when the product is configured with the Skip scanning if Content-length equals 0 option enabled: a malicious HTTP server can bypass content scanning by sending a Content-length header of 0, which many HTTP cl...

7.5CVSS6.9AI score0.02618EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2002/05/22 12:0 a.m.42 views

Compaq Web-enabled Management Software HTTP Server Arbitrary Traffic Proxy

The remote Compaq Web Management Agent install can be used as an HTTP proxy. An attacker can use this to bypass firewall rules or hide the source of web-based attacks. Written by H D Moore Changes by Tenable: - Revised plugin title, changed family 1/21/2009 include"compat.inc"; ifdescription...

7.5CVSS5.6AI score0.01584EPSS
Exploits0References2
CERT
CERT
added 2002/05/17 12:0 a.m.57 views

HTTP proxy default configurations allow arbitrary TCP connections

Overview Multiple vendors' HTTP proxy services use insecure default configurations that could allow an attacker to make arbitrary TCP connections to internal hosts or to external third-party hosts. Description HTTP proxy services commonly support the HTTP CONNECT method, which is designed to crea...

7.6AI score
Exploits0References13
NVD
NVD
added 2002/03/25 5:0 a.m.18 views

CVE-2002-0133

Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 long header fields to the HTTP proxy, or 2 a long string to the telnet proxy...

7.5CVSS7.8AI score0.04858EPSS
Exploits0References8
securityvulns
securityvulns
added 2002/03/12 12:0 a.m.65 views

VirusWall HTTP proxy content scanning circumvention

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 FOR PUBLIC RELEASE - ------------------------------------------------------------------------ Inside Security GmbH Vulnerability Notification Revision 0.3 2002-03-10 - ------------------------------------------------------------------------ The latest...

7AI score
Exploits0
exploitpack
exploitpack
added 2002/03/11 12:0 a.m.26 views

Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass

Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass // source: https://www.securityfocus.com/bid/4265/info Trend Micro InterScan VirusWall is a high performance internet gateway virus scanning package. It is capable of scanning incoming content over HTTP, SMTP and FTP for viruses...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2002/03/07 5:0 a.m.39 views

CVE-2002-0058

Vulnerability in Java Runtime Environment JRE allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in 1 Netscape 6.0 through 6.1 and 4.79 and earlier, 2 Microsoft VM...

6.6AI score0.08587EPSS
Exploits0References3
securityvulns
securityvulns
added 2002/03/05 12:0 a.m.57 views

Java HTTP proxy vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===Java HTTP proxy vulnerability=== Reference wal-01 Version 1.0 Date March 05, 2002 ===Cross references Sun Security Bulletin 00216 Microsoft Security Bulletin MS02-013 Vulnerability identifier CAN-2002-0058 under review...

5CVSS6.7AI score0.08587EPSS
Exploits0
securityvulns
securityvulns
added 2002/01/18 12:0 a.m.33 views

Avirt Proxy Buffer Overflow Vulnerabilities

Strumpf Noir Society Advisories ! Public release ! -- -= Avirt Proxy Buffer Overflow Vulnerabilities =- Release date: Thursday, January 17, 2002 Introduction: The Utah, USA-based company Avirt specializes in the development of inter-networking and sharing technologies. As such, it maintains the...

1.3AI score
Exploits0
Exploit DB
Exploit DB
added 2002/01/01 12:0 a.m.45 views

SapporoWorks Black JumboDog 2.6.4/2.6.5 - HTTP Proxy Buffer Overflow

// source: https://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long "expires", "if-modified-since", and "LastModified" strings containing executable code....

7AI score
Exploits0
exploitpack
exploitpack
added 2002/01/01 12:0 a.m.19 views

SapporoWorks Black JumboDog 2.6.42.6.5 - HTTP Proxy Buffer Overflow

SapporoWorks Black JumboDog 2.6.42.6.5 - HTTP Proxy Buffer Overflow // source: https://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long "expires",...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2001/08/23 12:0 a.m.58 views

Raptor Firewall 6.5 HTTP Proxy Detection

Raptor FW 6.5 appears to be running in front of the remote web server. By sending an invalid HTTP request to a web server behind the Raptor firewall, the HTTP proxy itself will respond. The server banner of Raptor FW version 6.5 is always 'Simple, Secure Web Server 1.1'. A remote attacker could u...

5.6AI score
Exploits0
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.24 views

CVE-2001-0129

Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request...

7.7AI score0.13898EPSS
Exploits1References4
securityvulns
securityvulns
added 2001/03/23 12:0 a.m.53 views

Проблемы в Compaq Management Software (HTTP proxy)

Web-Сервис установленный на порт 2301 работает как HTTP-прокси при запросе внешнего документа...

7.2AI score
Exploits0References1Affected Software1
NVD
NVD
added 2001/03/12 5:0 a.m.15 views

CVE-1999-0923

Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls...

7.5CVSS6.9AI score0.01366EPSS
Exploits0References1
NVD
NVD
added 2001/03/12 5:0 a.m.14 views

CVE-2001-0129

Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request...

10CVSS7.8AI score0.13898EPSS
Exploits1References4
Cvelist
Cvelist
added 2001/02/14 5:0 a.m.22 views

CVE-1999-0923

Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls...

6.9AI score0.01366EPSS
Exploits0References1
securityvulns
securityvulns
added 2000/09/22 12:0 a.m.31 views

DST2K0031: DoS in BrowseGate(Home) v2.80(H)

============================================================================ Delphis Consulting Plc ============================================================================ Security Team Advisories 18/09/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2000/07/12 4:0 a.m.25 views

CVE-2000-0376

Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request...

7.8AI score0.02981EPSS
Exploits0References1
Rows per page
Query Builder