2130 matches found
CVE-1999-0800
The GetFile.cfm file in Allaire Forums allows remote attackers to read files through a parameter to GetFile.cfm...
iWeb Hyperseek 2000 hsx.cgi show Parameter Traversal Arbitrary File Read
The 'hsx.cgi' CGI is installed. This CGI has a well known security flaw that lets an attacker read arbitrary files with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescripti...
extent technologies rbs isp 2.5 - Directory Traversal
extent technologies rbs isp 2.5 - Directory Traversal source: https://www.securityfocus.com/bid/1704/info A remote user is capable of gaining read access to any file residing in the same directory of a host running Extent RBS ISP through directory traversal. Appending '../' to the 'image' variabl...
[SECURITY] New version of Netscape Communicator/Navigator released
Package: netscape communicator, navigator Vulnerability: remote exploit Debian-specific: no Existing Netscape Communicator/Navigator packages contain the following vulnerabilities: 1. Netscape Communicator JPEG-Comment Heap Overwrite Vulnerability - executes arbitrary code in the comment field of...
Microsoft Internet Explorer 4.0/5.0/5.5 preview/5.0.1 - DocumentComplete() Cross Frame Access
source: https://www.securityfocus.com/bid/1224/info The DocumentComplete function in IE does not properly validate origin domains. Therefore it is possible for a remote webserver to gain read access to local files on the machine of any website visitor or email recipient by accessing the browser...
CVE-2000-0282
TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. dot dot attack on the webplus CGI program...
CVE-1999-0695
The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. dot dot attack...
CVE-1999-1462
Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files...
AZL-7330 CVE-1999-0475 affecting package procmail 3.22-53
A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail...
CVE-2024-32613
HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HLfldeserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612...