sendtemp.pl Read Access to Files

Exploit for cgi platform in category web applications ================================ sendtemp.pl Read Access to Files ================================ !/usr/bin/perl -w sendtemp.pl: A part of the Amaya Web development server contains a file disclosure vulnerability, which allows remote, read...

CVE-2001-0031

CVE-2001-0031 affects BroadVision One-To-One Enterprise. The vulnerability allows a remote attacker to determine the physical path of the server’s files by requesting a non-existent .jsp file name. This is apath disclosure issue arising from how the application handles missing JSP requests, poten...

thttpd ssi: retrieval of arbitrary world-readable files

thttpd 2.19 and earlier server-side-includes CGI program ssi allows retrieval of arbitrary world-readable files Date: October 2, 2000 Application: thttpd 2.19 and before Author: ghandi [email protected] Vendor Status: merged patches into thttpd 2.20 Fix: upgrade into thttpd 2.20 1. Description...

Дырка в IBM HTTP Server

Используя определенное количество '/' в URL HTTP-запроса можно обратиться к корневой папке сервера и к любому файлу...

CVE-1999-0212

Technical details (affected products, components, versions, root cause, fix) are not provided in the connected documents. Monitor for updates; current sources only restate the vulnerability description without actionable details.

CVE-1999-0059

IRIX fam service allows an attacker to obtain a list of all files on the server...

CVE-1999-0070

CVE-1999-0070 is associated with the generic test-cgi script vulnerability where an attacker can list files on the server. Red Hat and CVE listings confirm the issue stems from the test-cgi script. The Nessus plugin details an information-disclosure/remote command-execution style flaw: the script...

Microsoft IIS 3.0/4.0 - Using ASP and FSO To Read Server Files

source: https://www.securityfocus.com/bid/230/info The File System Object FSO may be called from an Active Server Page ASP to display files that exist outside of the web server's root directory. FSO allows calls to be made utilizing "../" to exit the local directory path. An example of this synta...

Microsoft IIS 3.04.0 - Using ASP and FSO To Read Server Files

Microsoft IIS 3.04.0 - Using ASP and FSO To Read Server Files source: https://www.securityfocus.com/bid/230/info The File System Object FSO may be called from an Active Server Page ASP to display files that exist outside of the web server's root directory. FSO allows calls to be made utilizing...

PT-1997-1032 · Sgi · Irix

Name of the Vulnerable Software and Affected Versions: IRIX affected versions not specified Description: The issue allows an attacker to obtain a list of all files on the server through the IRIX fam service. Recommendations: At the moment, there is no information about a newer version that contai...