8626 matches found
Apache Httpd < 1.3.28 : RotateLogs DoS
The rotatelogs support program on Win32 and OS/2 would quit logging and exit if it received special control characters such as 0x1A...
CVE-2003-0412
Sun ONE Application Server 7.0 for Windows 2000/XP does not log the complete URI of a long HTTP request, which could allow remote attackers to hide malicious activities...
Microsoft Windows NT 4.02000 - Media Services nsiislog.dll Remote Buffer Overflow
Microsoft Windows NT 4.02000 - Media Services nsiislog.dll Remote Buffer Overflow // source: https://www.securityfocus.com/bid/8035/info Microsoft has reported a buffer overflow vulnerability in Windows Media Services. This is due to a problem with how the logging ISAPI extension handles incoming...
Microsoft Windows NT 4.0/2000 - Media Services 'nsiislog.dll' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/8035/info Microsoft has reported a buffer overflow vulnerability in Windows Media Services. This is due to a problem with how the logging ISAPI extension handles incoming client requests. This could cause arbitrary code execution in IIS, which is...
UPB: Discussion Board/Web-Site Takeover
=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::= topic: UPB: Discussion Board/Web-Site Takeover product: Ultimate PHP Board v1.9 latest vendor: www.myupb.com risk: high date: 05/24/2k3 discovered by: euronymous /F0KP advisory urls: http://f0kp.iplus.ru/bz/024.en.txt...
CVE-2003-0412
Sun ONE Application Server 7.0 for Windows 2000/XP does not log the complete URI of a long HTTP request, which could allow remote attackers to hide malicious activities...
Solaris syslogd overflow
Synopsis: Solaris syslogd is vulnerable to a remote buffer overflow. Versions: Solaris 2.6 SPARC: Not vulnerable Solaris 2.7 SPARC/x86: Untested Solaris 8 SPARC: Vulnerable Solaris 8 x86: Vulnerable Solaris 9 SPARC: Not vulnerable Solaris 9 x86: Untested Impact: Low-Medium. While I've not been ab...
Mod_gzip Debug Mode Vulnerabilities
Multiple Vulnerabilities in modgzip Debugging Routines I. Synopsis Affected Systems: modgzip 1.3.26.1a and prior Risk: Development: High Production: Minimal Developer URL: http://www.sourceforge.net/projects/mod-gzip Status: Vendor is not supporting project at this time. II. Product Description...
CVE-2003-0227
Microsoft Windows Media Services ISAPI extension (nsiislog.dll) handling unicast/multicast logging on Windows NT 4.0/2000 is vulnerable. A remote attacker can cause IIS denial of service and execute arbitrary code via a crafted network request. OpenVAS notes active code execution vulnerabilities;...
Geeklog 1.3.7sr1 and below multiple vulnerabilities.
Products: Geeklog 1.3.7sr1 and below http://www.geeklog.net Date: 29 May 2003 Author: pokleyzz pokleyzzatscan-associates.net Contributors: skatscan-associates.net shaharilatscan-associates.net muniratscan-associates.net URL: http://www.scan-associates.net Summary: Geeklog 1.3.7sr1 and below...
UPB: Discussion Board/Web-Site Takeover
=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::= topic: UPB: Discussion Board/Web-Site Takeover product: Ultimate PHP Board v1.9 latest vendor: www.myupb.com risk: high date: 05/24/2k3 discovered by: euronymous /F0KP advisory urls: http://f0kp.iplus.ru/bz/024.en.txt...
CVE-2003-0340
Demarc Puresecure 1.6 stores authentication information for the logging server in plaintext, which allows attackers to steal login names and passwords to gain privileges...
Magic Winmail Server format string bug
Format string bug during POP3 logging...
ScriptLogic sets insecure permissions on "LOGS$" share
Overview Version 4.01 of ScriptLogic contains a vulnerability in the default permissions assigned to the network share used for logging. Description The ScriptLogic product from ScriptLogic, Inc. provides remote system administration capabilities for Microsoft Windows systems in a domain...
Libopt.a 3.1x - Error Logging Buffer Overflow (2)
Libopt.a 3.1x - Error Logging Buffer Overflow 2 source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when...
Libopt.a 3.1x - Error Logging Buffer Overflow (1)
Libopt.a 3.1x - Error Logging Buffer Overflow 1 / source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when...
Libopt.a 3.1x - Error Logging Buffer Overflow (1)
/ source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when handling excessive data. The data may be suppli...
Libopt.a 3.1x - Error Logging Buffer Overflow (2)
source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when handling excessive data. The data may be supplied...
Mod_NTLM 0.x - Authorisation Format String
ModNTLM 0.x - Authorisation Format String source: https://www.securityfocus.com/bid/7393/info A format string vulnerability has been reported for the modntlm Apache module. The problem occurs when logging authentication strings passed in HTTP requests. By passing malicious format specifiers in a...
CGI-City's CCLOG Script Injection Vulns
CGI-City's CCLOG USER-AGENT and REFERER Script Injection Vulnerabilities Discovered By BrainRawt [email protected] About CCLOG: ------------------ CC Log is a very simple logging script which logs the hits to a single web page. This script is typically useful for logging the hits to the main...