Lucene search
+L

1893 matches found

Tenable Nessus
Tenable Nessus
added 2002/08/06 12:0 a.m.30 views

BadBlue Malformed GET Request Remote DoS

By sending an invalid GET request without any URI, it iss possible to crash the remote web server. An attacker could exploit this vulnerability to make the web server crash continually. C Tenable Network Security, Inc. untested Script audit and contributions from Carmichael Security Erik Anderson...

5CVSS5.6AI score0.03213EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2002/06/11 12:0 a.m.40 views

AlienForm2 alienform.cgi Traversal Arbitrary File Manipulation

The AlienForm CGI script allows an attacker to view any file on the target computer, append arbitrary data to an existing file, and write arbitrary data to a new file. The AlienForm CGI script is installed as either af.cgi or alienform.cgi. %NASLMINLEVEL 70300 This script was written by Andrew...

6.4CVSS8.5AI score0.01984EPSS
Exploits0References2
securityvulns
securityvulns
added 2001/07/21 12:0 a.m.18 views

IBM TFTP Server for Java vulnerability

Vulnerability: The IBM alphaWorks TFTP Server for Java available at http://alphaworks.ibm.com/tech/TFTP is vulnerable to a standard directory traversal attack i.e. ../../. Vendor Response: The vendor was contacted on 19 June 2001 and responded on 20 June 2001 as follows: "We will take a look at t...

1.9AI score
Exploits0
securityvulns
securityvulns
added 2001/03/29 12:0 a.m.15 views

CHINANSL Security Advisory(CSA-200105)

Topic: Tomcat 3.0 for win2000 Directory traversal Vulnerability vulnerable: Tomcat 3.0 for win2000 maybe for other operating system also. discussion: A security vulnerability has been found in Windows NT/2000 systems that have Tomcat 3.0 installed.The vulnerability allows remote attackers to acce...

1.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2001/01/24 12:0 a.m.23 views

Icecast utils.c fd_write Function Format String

The remote server claims to be running Icecast 1.3.7 or 1.3.8beta2. These versions are vulnerable to a format string attack that could allow an attacker to execute arbitrary commands on this host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid10600; scriptversion...

10CVSS6AI score0.13122EPSS
Exploits1References2
securityvulns
securityvulns
added 2000/12/14 12:0 a.m.37 views

Vulnerability Report For Microsoft Windows NT 4.0 MSTask.exe code error

Vulnerability Report For Microsoft Windows NT 4.0 MSTask.exe code error Class: Unknown error Remotely Exploitable: Yes Locally Exploitable: Yes Risk: Medium Vendor status: Microsoft was notified on 7 December Vulnerability Description: MSTask.exe is an application that ships with the Windows NT 4...

0.8AI score
Exploits0
Packet Storm
Packet Storm
added 2000/12/07 12:0 a.m.24 views

CSA-200012.txt

CHINANSL Security AdvisoryCSA-200012 Topic: Ultraseek Server 3.0 Vulnerability Release Date£º Dec 6, 2000 Affected system: ============ Ultraseek Server 3.0 ¡¡¡¡- SunOS Impact: ====== CHINANLS security team has found a security problem in Ultraseek Server 3.0 . Exploitation of this vulnerability,...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/12/07 12:0 a.m.28 views

Security Advisory(CSA-200012)

CHINANSL Security AdvisoryCSA-200012 Topic: Ultraseek Server 3.0 Vulnerability Release Dateёє Dec 6, 2000 Affected system: ============ Ultraseek Server 3.0 ЎЎЎЎ- SunOS Impact: ====== CHINANLS security team has found a security problem in Ultraseek Server 3.0 . Exploitation of this vulnerability,...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2000/08/24 12:0 a.m.322 views

htgrep hdr Parameter Arbitrary File access

The 'htgrep' cgi is installed. This CGI has a well known security flaw that lets anyone read arbitrary files with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription...

5CVSS5.6AI score0.02057EPSS
Exploits1References2
Packet Storm
Packet Storm
added 1999/11/04 12:0 a.m.21 views

bftelnet.dos.txt

Remote DoS Attack in BFTelnet Server v1.1 for Windows NT PROBLEM UssrLabs found a Remote DoS Attack in BFTelnet Server v1.1 for Windows NT, the buffer overflow is caused by a long user name 3090 characters. If BFTelnet Server is running as a service the service will exit and no messages are...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/08/19 12:0 a.m.51 views

Glimpse HTTP aglimpse Arbitrary Command Execution

The remote web server is running GlipmseHTTP. The installed version suffers from a remote command execution vulnerability in the 'aglimpse' component. Note that we could not actually check for the presence of this vulnerability, and only checked for the existence of the 'aglimpse' CGI...

7.5CVSS5.7AI score0.08697EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 1999/06/22 12:0 a.m.20 views

iParty Client Extended Character Handling Remote Overflow DoS

iParty is an audio/text chat program for Windows. The iParty server listens on port 6004 for client requests. If someone connects to it and sends a large amount of ASCII 255 chars, the server will close itself and disconnect all the current users. C Tenable Network Security, Inc...

5CVSS5.5AI score0.0531EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 1999/06/22 12:0 a.m.56 views

icat carbo.dll icatcommand Parameter Traversal Arbitrary File Access

The installed version of the 'icat' CGI allows a remote user to read arbitrary files on the remote target, because it fails to properly sanitize user-supplied input to the 'icatcommand' parameter. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

5CVSS5.5AI score0.08052EPSS
Exploits1References1
Rows per page
Query Builder