Apache 1.3 - Artificially Long Slash Path Directory Listing (4)

source: https://www.securityfocus.com/bid/2503/info Apache HTTPD is the Apache Web Server, freely distributed and actively maintained by the Apache Software Foundation. It is a freely available and widely used software package, included with various implementations of the UNIX operating system an...

CVE-2001-0454

Directory traversal vulnerability in SlimServe HTTPd 1.1a allows remote attackers to read arbitrary files via a ... modified dot dot in the HTTP request...

CVE-2001-0454

CVE-2001-0454 describes a directory traversal vulnerability in SlimServe HTTPd 1.1a. The issue allows an unauthenticated attacker to read arbitrary files by supplying a modified dot-dot sequence in the HTTP request path. The impact is partial confidentiality (read access to files) with no indicat...

Apache Httpd < 1.3.20 : Denial of service attack on Win32 and OS2

A vulnerability was found in the Win32 and OS2 ports of Apache 1.3. A client submitting a carefully constructed URI could cause a General Protection Fault in a child process, bringing up a message box which would have to be cleared by the operator to resume operation. This vulnerability introduce...

CVE-2001-0171

Buffer overflow in SlimServe HTTPd 1.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long GET request...

CVE-2001-0297

Directory traversal vulnerability in Simple Server HTTPd 1.0 originally Free Java Server allows remote attackers to read arbitrary files via a .. dot dot in the URL...

CVE-2001-0298

Buffer overflow in WebReflex 1.55 HTTPd allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request...

CVE-2001-0298

CVE-2001-0298 affects WebReflex 1.55 HTTPd. The vulnerability is a buffer overflow triggered by a long HTTP GET request, enabling remote denial of service and potentially arbitrary command execution. The available descriptions from NVD/CVE records confirm the issue but do not specify affected pla...

CVE-2001-0297

Directory traversal vulnerability in Simple Server HTTPd 1.0 originally Free Java Server allows remote attackers to read arbitrary files via a .. dot dot in the URL...

CVE-2001-0297

CVE-2001-0297 affects Simple Server HTTPd 1.0 (originally Free Java Server). The vulnerability is a directory traversal that allows remote attackers to read arbitrary files via a .. in the URL. This is described in NVD; connected EUVD entry mentions malware without remediation details. The provid...

CVE-2001-0171

CVE-2001-0171 affects SlimServe HTTPd 1.0 via a buffer overflow in handling a long GET request. This leads to a remote denial of service and may allow arbitrary command execution . The provided documents identify the root cause as the overflow in SlimServe HTTPd 1.0 and state the impact as DoS an...

CVE-2001-0171

Buffer overflow in SlimServe HTTPd 1.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long GET request...

SlimServe HTTPd ver. 1.1a Directory Traversal

it is possible to view dir. and download files outside of the wwwroot directory. Exploit: http://127.0.0.1/.../ http://127.0.0.1/.../.../directory/file.xxx Solution: disable folder listings it is enabled by default, which will secure you from viewing dir. outside of the wwwroot dir.But it is stil...

sendtemp.pl - Read Access to Files

sendtemp.pl - Read Access to Files !/usr/bin/perl -w sendtemp.pl: A part of the Amaya Web development server contains a file disclosure vulnerability, which allows remote, read access to files on the servers file system, as whichever user the httpd is running as. The Vulnerability is really quite...

WhitSoft SlimServe HTTPd 1.01.1 - Directory Traversal

WhitSoft SlimServe HTTPd 1.01.1 - Directory Traversal source: https://www.securityfocus.com/bid/14132/info SlimServe HTTP server is prone to directory traversal attacks due to improper sanitization of user input. This type of attack allows a malicious user to read files that exist outside of the...

DOS Vulnerability in SlimServe HTTPd

----- Begin Hush Signed Message from [email protected] ----- DOS Vulnerability in SlimServe HTTPd Overview SlimServe HTTPd v1.1 is a web server available from http://www.whitsoftdev.com and http://www.download.com. A DOS vulnerability exists which allows a remote attacker to crash the server...

Apache Httpd < 1.3.19 : Requests can cause directory listing to be displayed

The default installation can lead modnegotiation and moddir or modautoindex to display a directory listing instead of the multiview index.html file if a very long path was created artificially by using many slashes...

WhitSoft SlimServe HTTPd 1.1 - &#039;GET&#039; Denial of Service

source: https://www.securityfocus.com/bid/2451/info SlimServe HTTPd is a free HTTP Daemon maintained by WhitSoft Development. SlimServe is designed to provide basic HTTP services on the Microsoft Windows platform. A problem in the handling of HTTP GET requests could allow a remote user to deny...

WhitSoft SlimServe HTTPd 1.1 - GET Denial of Service

WhitSoft SlimServe HTTPd 1.1 - GET Denial of Service source: https://www.securityfocus.com/bid/2451/info SlimServe HTTPd is a free HTTP Daemon maintained by WhitSoft Development. SlimServe is designed to provide basic HTTP services on the Microsoft Windows platform. A problem in the handling of...

A1 Server v1.0a HTTPd &#40;DoS &amp; Dir Traversal&#41;

Introduction: A1 Server v1.0a is a HTTPd server for the Windows OS, and it will deliver the following content: GIF impages, HTM or HTML pages, EXE files, and ZIP files. The server is very small, but yet somewhat stable and is freeware! Yeah. right The Vendors website is:...