Lucene search
K

159 matches found

Tenable Nessus
Tenable Nessus
added 2004/08/02 12:0 a.m.35 views

RiSearch show.pl Open Proxy Relay

The remote host seems to be running RiSearch, a local search engine. There is a flaw in the CGI 'show.pl' which is bundled with this software that could allow an attacker to use the remote host as an open proxy by doing a request like :...

9.8CVSS5.6AI score0.05703EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.10 views

Mandrake Linux Security Advisory : apache2 (MDKSA-2003:096-1)

A problem was discovered in Apache2 where CGI scripts that output more than 4k of output to STDERR will hang the script's execution which can cause a Denial of Service on the httpd process because it is waiting for more input from the CGI that is not forthcoming due to the locked write call in...

5.8AI score
Exploits0References1
Packet Storm
Packet Storm
added 2004/07/28 12:0 a.m.30 views

IRM Security Advisory 9

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- IRM Security Advisory No. 009 RiSearch and RiSearch ProPro are vulnerable to open FTP/HTTP proxy, directory listings and file disclosure vulnerabilities Vulnerablity Type / Importance: Network Subversion, Open Proxy, Brute-For...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2004/07/28 12:0 a.m.30 views

IRM 009: RiSearch and RiSearch ProPro are vulnerable to open FTP/HTTP proxy, directory listings and file disclosure vulnerabilities

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- IRM Security Advisory No. 009 RiSearch and RiSearch ProPro are vulnerable to open FTP/HTTP proxy, directory listings and file disclosure vulnerabilities Vulnerablity Type / Importance: Network Subversion, Open Proxy, Brute-For...

7.1AI score
Exploits0
NVD
NVD
added 2004/07/27 4:0 a.m.13 views

CVE-2004-2061

RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a 1 http://, 2 ftp://, or 3 file:// URL...

9.8CVSS9.3AI score0.05703EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2004/07/27 12:0 a.m.5 views

PT-2004-2957 · Isearch · Isearch +1

Name of the Vulnerable Software and Affected Versions: RiSearch version 1.0.01 RiSearch Pro version 3.2.06 Description: The issue allows remote attackers to use the show.pl script as an open proxy or read arbitrary local files by setting the url parameter to a http://, ftp://, or file:// URL...

9.8CVSS6.5AI score0.05703EPSS
Exploits1References11
exploitpack
exploitpack
added 2004/07/27 12:0 a.m.15 views

RiSearch 0.99 RiSearch Pro 3.2.6 - show.pl Arbitrary File Access

RiSearch 0.99 RiSearch Pro 3.2.6 - show.pl Arbitrary File Access source: https://www.securityfocus.com/bid/10812/info RiSearch and RiSearch Pro are reported prone to an open proxy vulnerability. It is reported that the issue presents itself due to a lack of sufficient sanitization performed on us...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/07/27 12:0 a.m.15 views

RiSearch 0.99 RiSearch Pro 3.2.6 - show.pl Open Proxy Relay

RiSearch 0.99 RiSearch Pro 3.2.6 - show.pl Open Proxy Relay source: https://www.securityfocus.com/bid/10812/info RiSearch and RiSearch Pro are reported prone to an open proxy vulnerability. It is reported that the issue presents itself due to a lack of sufficient sanitization performed on user...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/07/27 12:0 a.m.24 views

RiSearch 0.99 /RiSearch Pro 3.2.6 - show.pl Open Proxy Relay

source: https://www.securityfocus.com/bid/10812/info RiSearch and RiSearch Pro are reported prone to an open proxy vulnerability. It is reported that the issue presents itself due to a lack of sufficient sanitization performed on user supplied URI parameters. A remote attacker may exploit this...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2004/07/27 12:0 a.m.34 views

RiSearch 0.99 /RiSearch Pro 3.2.6 - show.pl Arbitrary File Access

source: https://www.securityfocus.com/bid/10812/info RiSearch and RiSearch Pro are reported prone to an open proxy vulnerability. It is reported that the issue presents itself due to a lack of sufficient sanitization performed on user supplied URI parameters. A remote attacker may exploit this...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/09/16 12:0 a.m.28 views

Multiple Nokia Electronic Documentation bugs

Crossite scripting, path disclosure, open proxy...

1.9AI score
Exploits0References1Affected Software1
NVD
NVD
added 2003/06/16 4:0 a.m.16 views

CVE-2003-0316

Venturi Client before 2.2, as used in certain Fourelle and Venturi Wireless products, can be used as an open proxy for various protocols, including an open relay for SMTP, which allows it to be abused by spammers...

5CVSS6.5AI score0.01103EPSS
Exploits1References2
CVE
CVE
added 2003/05/17 4:0 a.m.64 views

CVE-2003-0316

CVE-2003-0316 concerns Venturi Client before version 2.2, used in Fourelle and Venturi Wireless products, which can function as an open proxy/relay for various protocols, including SMTP, enabling abuse by spammers. The CVE description and NVD entry confirm the issue and its network scope; OpenVAS...

5CVSS4.6AI score0.01103EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2003/05/17 4:0 a.m.24 views

CVE-2003-0316

Venturi Client before 2.2, as used in certain Fourelle and Venturi Wireless products, can be used as an open proxy for various protocols, including an open relay for SMTP, which allows it to be abused by spammers...

4.6AI score0.01103EPSS
Exploits1References2
securityvulns
securityvulns
added 2003/05/17 12:0 a.m.28 views

Venturi Client open proxy

Client behaves itself as a open proxy...

1.9AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/05/17 12:0 a.m.55 views

Venturi Client 2.1 confirmed as open relay [Verizon Wireless Mobile Office]

Product: Fourelle|Venturi Wireless Venturi Client all versions prior to 2.2 Brief Description: Acts as an open proxy for protocols including SMTP. Description: Venturi Client is a multi-protocol proxy that operates in conjunction with a proprietary transcoding server. It inserts itself into the...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2003/01/30 12:0 a.m.14 views

Sambar Server 5.x - Open Proxy Authentication Bypass

Sambar Server 5.x - Open Proxy Authentication Bypass source: https://www.securityfocus.com/bid/10256/info Sambar improperly validates the IP address of an originating connection and can be used to gain access the administration interface without authorization. Once the remote attacker has gained...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2003/01/30 12:0 a.m.30 views

Sambar Server 5.x - Open Proxy / Authentication Bypass

source: https://www.securityfocus.com/bid/10256/info Sambar improperly validates the IP address of an originating connection and can be used to gain access the administration interface without authorization. Once the remote attacker has gained access to the administrative interface, further attac...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/12/09 12:0 a.m.29 views

TrendMicro InterScan VirusWall open proxy

There is no limitation for CONNECT usage...

2.9AI score
Exploits0References1Affected Software1
Rows per page
Query Builder