34 matches found
Mozilla Firefox Information Disclosure Vulnerability (CNVD-2018-07085)
Mozilla Firefox browser Firefox is a free, open source browser for Windows, Linux and MacOSX platforms. An information disclosure vulnerability exists in a legacy extension in Mozilla Firefox. A remote user can send a specially crafted request to exploit the vulnerability to view potentially...
Information Disclosure
Moodle is vulnerable to information disclosure. It's possible for remote attackers to view the profiles images of users' accounts...
LG On-Screen Phone Security Bypass Vulnerability
LG On-Screen Phone is a service program that allows you to remotely view and manipulate your cell phone through PC keyboard/mouse input. A security bypass vulnerability exists in LG On-Screen Phone, which can be exploited by attackers to bypass certain security restrictions and perform unauthoriz...
microsoft index server 2.0/indexing services for windows 2000 - Directory Traversal
No description provided by source. source: http://www.securityfocus.com/bid/950/info Index Server 2.0 is a utility included in the NT 4.0 Option Pack. The functionality provided by Index Service has been built into Windows 2000 as Indexing Services. When combined with IIS, Index Server and Indexi...
Markus Triska CGIForum 1.0 "thesection" Directory Traversal Vulnerability
No description provided by source. source : http://www.securityfocus.com/bid/1963/info CGIForum is a commercial cgi script from Markus Triska which is designed to facilitate web-based threaded discussion forums. The script improperly validates user-supplied input to the thesection parameter. If a...
iFoto 1.0 Index.PHP Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25065/info iFoto is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. A remote attacker can exploit this issue to view the directory structure of the affected computer...
Debian Linux 2.1 httpd Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/318/info The Debian GNU/Linux 2.1 apache package by default allows anyone to view /usr/doc via the web, remotely. This is because srm.conf is preconfigured with the line: Alias /doc/ /usr/doc/ Boa is also preconfigured th...
InduSoft Web Studio Thin Client Detection
Binary data 8033.prm...
CCTV DVR Login Scanning Utility
This module tests for standalone CCTV DVR video surveillance deployments specifically by MicroDigital, HIVISION, CTRing, and numerous other rebranded devices that are utilizing default vendor passwords. Additionally, this module has the ability to brute force user accounts. Such CCTV DVR video...
JVN#67974490 Webmin directory traversal vulnerability
Impact A remote attacker could view files on the computer without authentication. Private information could be leaked as a result. Solution Products Affected Webmin 1.280 and earlier Usermin 1.210 and earlier As of June 30, 2006, patched versions of the module addressing this vulnerability for al...
IIS 5.1 allows for remote viewing of source code on FAT/FAT32 volumes using WebDAV
It is possible to remotely view the source code of web script files though a specially crafted WebDAV HTTP request. Only IIS 5.1 seems to be vulnerable. The web script file must be on a FAT or a FAT32 volume, web scripts located on NTFS volumes are not vulnerable. Confirmed vulnerable -Microsoft®...
CVE-2002-0191
Microsoft Internet Explorer 5.01, 5.5 and 6.0 are affected by CVE-2002-0191, which allows remote attackers to view arbitrary files containing the "{" character via script using the cssText property of a stylesheet object (Local Information Disclosure through HTML Object). The vulnerability is des...
CVE-2002-0409
orderdetails.aspx, as made available to Microsoft .NET developers as example code and demonstrated on www.ibuyspystore.com, allows remote attackers to view the orders of other users by modifying the OrderID parameter...
Netscape Enterprise Server 3.03.63.51 - Directory Indexing
Netscape Enterprise Server 3.03.63.51 - Directory Indexing // source: https://www.securityfocus.com/bid/1063/info Netscape Enterprise Server 3.x includes a poorly documented feature that will allow remote users to view directory listings by appending various instructional tags to the URL. Althoug...