55 matches found
Sun Java Web Server - System WebDAV OPTIONS Buffer Overflow (Metasploit)
$Id: sunjswsdavoptions.rb 9971 2010-08-07 06:59:16Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Sun Java System Web Server Multiple Vulnerabilities - Windows
Sun Java Web Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
http-methods NSE Script
Finds out what options are supported by an HTTP server by sending an OPTIONS request. Lists potentially risky methods. It tests those methods not mentioned in the OPTIONS headers individually and sees if they are implemented. Any output other than 501/405 suggests that the method is if not in the...
Stack overflow
Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server aka SJWS 7.0 Update 7 allows remote attackers to cause a denial of service daemon crash and possibly have unspecified other impact via a long URI in an HTTP OPTIONS request...
CVE-2010-0361
Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server aka SJWS 7.0 Update 7 allows remote attackers to cause a denial of service daemon crash and possibly have unspecified other impact via a long URI in an HTTP OPTIONS request...
Stable Update: Fix Google Chrome not Starting
Google Chrome's Stable channel has been updated to 3.0.195.33 to fix a potential issue that could cause Google Chrome to stop working and a security issue. This release removes a dependency on a Windows library t2embed.dll that is not required by Google Chrome. If that library is missing or the...
CVE-2009-3457
Cisco ACE XML Gateway AXG and ACE Web Application Firewall WAF before 6.1 allow remote attackers to obtain sensitive information via an HTTP request that lacks a handler, as demonstrated by 1 an OPTIONS request or 2 a crafted GET request, leading to a Message-handling Errors message containing a...
Cisco应用控制引擎(ACE) XML网关IP地址信息泄漏漏洞
Bugraq ID: 36522 Cisco ACE XML网关是Cisco应用控制引擎ACE家族产品的重要组件。 Cisco ACE XML网关缺少正确的错误处理管理,远程攻击者可以利用漏洞获得内部IP信息。 Cisco ACE XML网关在不能正确找到请求相匹配的处理器时,会直接对客户端提供包含内部IP地址的错误消息应答。 相关的请求不仅仅限于OPTIONS请求类型,如果GET请求使用的路径没有相应的处理器配置,也同样泄漏内部IP地址信息。 Cisco Application Control Engine ACE XML Gateway 6.0 Cisco Application...
CVE-2002-2241
Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service crash via a long HTTP OPTIONS request...
Design/Logic Flaw
eStara SIP softphone allows remote attackers to cause a denial of service crash via a SIP OPTIONS request with a negative Expires field...
CVE-2006-0737
eStara SIP softphone allows remote attackers to cause a denial of service crash via a SIP OPTIONS request with a negative Expires field...
CVE-2004-2315
The vulnerability CVE-2004-2315 affects Mbedthis AppWeb HTTP server prior to version 1.0.2, where a remote attacker can cause a denial of service (crash) by sending an empty OPTIONS request. The provided documents state the issue and affected version but do not include exploit details, root-cause...
CVE-2004-2315
Mbedthis AppWeb HTTP server before 1.0.2 allows remote attackers to cause a denial of service crash via an empty OPTIONS request...
CVE-2002-2241
Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service crash via a long HTTP OPTIONS request...
RTSP Server Type / Version Detection
The remote server is an RTSP server. RTSP is a client-server multimedia presentation protocol, which is used to stream videos and audio files over an IP network. It is usually possible to obtain the list of capabilities and the server name of the remote RTSP server by sending an OPTIONS request. ...