5781 matches found
Mini HTTPD 1.21 - Stack Buffer Overflow POST Exploit
No description provided by source. !/usr/bin/python Title: Mini HTTPD stack buffer overflow POST exploit Author: TheColonial Date: 20 Feb 2013 Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html Vendor Homepage: http://www.picolix.jp/ Version: 1.21 Tested on: Windows XP Profession...
NCSA httpd 1.x Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/3158/info NCSA HTTPd is a free, open-source web server for nix systems. NCSA HTTPd versions 1.3 and earlier are prone to an exploitable buffer overflowin the username field which will allow malicious remote users to execu...
NullLogic Null HTTPd 0.5 - Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8697/info Null HTTPd has been reported prone to a remotely triggered denial of service vulnerability. The issue has been reported to present itself in the HTTP POST handling routines within the Null HTTPd server. It has...
weborf <= 0.12.2 - Directory Traversal vulnerability
No description provided by source. Title: Weborf httpd = 0.12.2 Directory Traversal Vulnerability Date: Sep 6, 2010 Author: Rew Link: http://galileo.dmi.unict.it/wiki/weborf/doku.php Version: 0.12.2 Tested On: Debian 5 CVE: N/A ============================================================= Weborf...
OneHTTPD 0.8 - Crash PoC
No description provided by source. Exploit Title: onehttpd 0.8 Crash PoC Date: Feb 7,2014 Exploit Author: Mahmod Mahajna Mahy Version: 0.8 Software Link: https://onehttpd.googlecode.com/files/onehttpd-0.8.exe Tested on: Windows XP SP3 Email: [email protected] from requests import...
Apache 1.3.x - 2.0.48 - mod_userdir Remote Users Disclosure Exploit
No description provided by source. / m00-apache-w00t.c Apache 1.3.-2.0.48 remote users disclosure exploit by m00 Security. Proof-of-Concept edition This tool scans remote hosts with httpd apache and disclosure information about existens users accounts via wrong default configuration of moduserdir...
Fusion SBX <= 1.2 - Remote Command Execution Exploit
No description provided by source. / Fusion SBX = 1.2 exploit sileFSBXxpl This exploit use vulnerability found into Fusion SBX and create new variable and call it with a malicious function stored in config.php. This exploit utilize injection of three diverse procedures for execution of arbitrary...
NullLogic Null HTTPd 0.5 Error Page Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5603/info NullLogic Null HTTPd is a small multithreaded webserver for Linux and Windows. It is possible for attackers to construct a URL that will cause scripting code to be embedded in error pages. As a result, when an...
Network Tool 0.2 PHPNuke Addon Metacharacter Filtering Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3552/info Network Tool is a PHPNuke addon, written and maintained by Rick Fournier. It is designed to offer network features such as nmap, traceroute, and ping from a web interface. A problem with the package has been...
MultiCMS Local File Inclusion Vulnerbility
No description provided by source. Source: http://packetstormsecurity.org/files/view/97987/multicms-lfi.txt =============================wwwdotWhiteponnydotcom============================= Date: 29/01/2011 Author: R3VANBASTARD Exploit Title: MultiCMS File Inclusion Vulnerbility Vendor:...
Apache 1.3 Artificially Long Slash Path Directory Listing Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/2503/info Apache HTTPD is the Apache Web Server, freely distributed and actively maintained by the Apache Software Foundation. It is a freely available and widely used software package, included with various implementatio...
Apache 1.3 Artificially Long Slash Path Directory Listing Vulnerability (3)
No description provided by source. source: http://www.securityfocus.com/bid/2503/info Apache HTTPD is the Apache Web Server, freely distributed and actively maintained by the Apache Software Foundation. It is a freely available and widely used software package, included with various implementatio...
Light HTTPD 0.1 GET Request Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/6162/info Light httpd is prone to a remotely exploitable buffer overflow condition. This overflow can be triggered by sending the server an excessively long GET request. As Light httpd drops user privileges when running,...
SH-HTTPD 0.3/0.4 Character Filtering Remote Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8897/info A problem has been identified in the handling of some characters by sh-httpd. Because of this, an attacker may be able to gain unauthorized access to information. GET GET ../../../sh-httpd/p GET /../../etc/s GET...
Apache <= 1.3.31 mod_include Local Buffer Overflow Exploit
No description provided by source. / local exploit for modinclude of apache 1.3.x written by xCrZx /18.10.2004/ bug found by xCrZx /18.10.2004/ Successfully tested on apache 1.3.31 under Linux RH9.0Shrike / / Technical Details: there is an overflow in gettag function: static char gettagpool p, FI...
NCSA httpd 1.x Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/3158/info NCSA HTTPd is a free, open-source web server for nix systems. NCSA HTTPd versions 1.3 and earlier are prone to an exploitable buffer overflowin the username field which will allow malicious remote users to execu...
Simple HTTPd 1.42 Denial of Servive Exploit
No description provided by source. !/usr/bin/python Exploit Title: Simple HTTPd 1.42 PoC DoS Date: 8/10/2011 Author: G13 Software Link: http://sourceforge.net/projects/shttpd/files/shttpd/1.42/shttpd-1.42.tar.gz/download Version: 1.42 Tested on: WinXP SP1 CVE : 2011-2900 Since Mongoose HTTPd and...
NullLogic Null HTTPd 0.5.1 Error Page Long HTTP Request Cross-Site Scripting Vulnerablity
No description provided by source. source: http://www.securityfocus.com/bid/8695/info It has been reported that Null HTTPd is prone to a cross-site scripting vulnerability when displaying error pages that may allow an attacker to execute HTML or script code in a user's browser. The issue was...
AN HTTPD 1.38/1.39/1.40/1.41 Malformed SOCKS4 Request Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6012/info A buffer overflow vulnerability has been reported for AN HTTPD. The vulnerability is due to insufficient bounds checking of usernames for SOCKS4 requests. When AN HTTPD acts as a SOCKS4 server, it handles user...
Simple HTTPD <= 1.41 (/aux) Remote Denial of Service Exploit
No description provided by source. usage: poc.py host port import socket import sys print ----------------------------------------------------------------------- print Simple HTTPD 1.3 /aux Denial of Service\n print url: http://shttpd.sourceforge.net\n print author: shinnai print mail:...