2981 matches found
CVE-2006-3844
Buffer overflow in Quick 'n Easy FTP Server 3.0 allows remote authenticated users to execute arbitrary commands via a long argument to the LIST command, a different issue than CVE-2006-2027...
CVE-2006-3844
CVE-2006-3844 / CVE-2006-2027 family involves a buffer overflow in Quick ’n Easy FTP Server (3.0) affecting the server’s handling of long arguments during FTP commands. The issue is described as a buffer overflow in the Unicode/logging processing path, which can allow remote authenticated users t...
CVE-2006-3844
Buffer overflow in Quick 'n Easy FTP Server 3.0 allows remote authenticated users to execute arbitrary commands via a long argument to the LIST command, a different issue than CVE-2006-2027...
Apple Quick Time Streaming Server buffer overflow
Buffer overflow on RTSP protocol headers parsing...
Buffer overflow
Buffer overflow in Unicode processing in the logging functionality in Pablo Software Solutions Quick 'n Easy FTP Server Professional and Lite, probably 3.0, allows remote authenticated users to execute arbitrary code by sending a command with a long argument, which triggers a buffer overflow when...
JVN#68630618 QUICK CART cross-site scripting vulnerability
Impact An arbitrary script could be executed on the user's web browser. Solution Products Affected QUICK CART Ver 1 QUICK CART Ver 2 QUICK CART Free QUICK CART Pro QUICK CART Plugin for Movable Type 3.2...
JVN#10222000 QUICK CART OS command injection vulnerability
Impact A remote attacker could execute arbitrary operating system commands on a server running QUICK CART. Solution Products Affected QUICK CART Ver 1 QUICK CART Ver 2 QUICK CART Free QUICK CART Pro QUICK CART Plugin for Movable Type 3.2...
Code injection
The a Quick 'n Easy Web Server before 3.1.1 and b Baby ASP Web Server 2.7.2 allows remote attackers to obtain the source code of ASP files via 1 . dot and 2 space characters in the extension of a URL...
Secunia Research: Quick 'n Easy/Baby Web Server ASP Code Disclosure Vulnerability
====================================================================== Secunia Research 24/03/2006 - Quick 'n Easy/Baby Web Server ASP Code Disclosure Vulnerability - ====================================================================== Table of Contents Affected...
CVE-2006-1391
The a Quick 'n Easy Web Server before 3.1.1 and b Baby ASP Web Server 2.7.2 allows remote attackers to obtain the source code of ASP files via 1 . dot and 2 space characters in the extension of a URL...
CVE-2006-1391
The CVE-2006-1391 entry concerns two web servers: Quick 'n Easy Web Server (before 3.1.1) and Baby ASP Web Server (2.7.2). The issue is that an attacker can remotely obtain the source code of ASP files by crafting URLs where the extension uses a dot/space (e.g., manipulating the URL extension), e...
[SA19306] Quick 'n Easy Web Server ASP Code Disclosure Vulnerability
TITLE: Quick 'n Easy Web Server ASP Code Disclosure Vulnerability SECUNIA ADVISORY ID: SA19306 VERIFY ADVISORY: http://secunia.com/advisories/19306/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Quick and Easy Web Server 3.x...
Ubuntu 4.10 / 5.04 : gnupg vulnerability (USN-170-1)
Serge Mister and Robert Zuccherato discovered a weakness of the symmetrical encryption algorithm of gnupg. When decrypting a message, gnupg uses a feature called 'quick scan'; this can quickly check whether the key that is used for decryption is probably the right one, so that wrong keys can be...
CVE-2005-4292
Cross-site scripting XSS vulnerability in CommerceSQL 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search module parameters, possibly the keywords parameter in the Quick Find feature...
CVE-2005-4292
CVE-2005-4292 affects CommerceSQL 1.0 and earlier. Vulnerable due to cross-site scripting via unspecified search module parameters, possibly the keywords parameter in Quick Find, enabling remote injection of arbitrary script/HTML. No remediation details or exploit status provided in the connected...
CVE-2005-3736
Multiple cross-site scripting XSS vulnerabilities in e-Quick Cart allow remote attackers to inject arbitrary web script or HTML via the 1 strgifttoname parameter in shopgift.asp, 2 strfirstname parameter in shopmaillist.asp, 3 strpid parameter in shopprojectlogin.asp, and 4 Custname parameter in...
CVE-2005-3735
Multiple SQL injection vulnerabilities in e-Quick Cart allow remote attackers to execute arbitrary SQL commands via the 1 productid parameter in shopaddtocart.asp, 2 strpemail parameter in shopprojectlogin.asp, and 3 id parameter in shoptellafriend.asp...
CVE-2005-3736
CVE-2005-3736 refers to multiple XSS vulnerabilities in the e-Quick Cart application. The disclosed vectors involve user-supplied input parameters: strgifttoname in shopgift.asp, strfirstname in shopmaillist.asp, strpid in shopprojectlogin.asp, and Custname in shoptellafriend.asp. These allow rem...
CVE-2005-3735
CVE-2005-3735 involves multiple SQL injection vulnerabilities in the e-Quick Cart system. The affected components/parameters are: (1) productid in shopaddtocart.asp, (2) strpemail in shopprojectlogin.asp, and (3) id in shoptellafriend.asp. The underlying issue is unsafely constructed SQL queries ...
CVE-2005-3735
Multiple SQL injection vulnerabilities in e-Quick Cart allow remote attackers to execute arbitrary SQL commands via the 1 productid parameter in shopaddtocart.asp, 2 strpemail parameter in shopprojectlogin.asp, and 3 id parameter in shoptellafriend.asp...