1851 matches found
Citrix Server Detection
Citrix servers allow a Windows user to remotely obtain a graphical login and therefore act as a local user on the remote host. NOTE: by default the Citrix Server application utilizes a weak 40 bit obfuscation algorithm not even a true encryption. If the default settings have not been changed, the...
Microsoft Internet Information Server (IIS) vulnerable to buffer overflow via inaccurate checking of delimiters in HTTP header fields
Overview A buffer overflow in IIS could allow an intruder to execute arbitrary code the the privileges of the ASP ISAPI extension. Description Like all web servers, IIS parses HTTP headers and decomposes them into the constituent parts. As part of this processing, IIS checks for delimiters that a...
Directory traversal in Quik-Serv Web Server
No description provided...
csSearch csSearch.cgi setup Parameter Arbitrary Command Execution
The version of csSearch running on the remote host has a command execution vulnerability. Input to the 'print' parameter of 'csSearch.cgi' is not properly sanitized. A remote attacker could exploit this by executing arbitrary system commands with the privileges of the web server. %NASLMINLEVEL...
CVE-2001-1107
CVE-2001-1107 affects SnapStream PVS 1.2a, where passwords are stored in plaintext in the SSD.ini file. This storage flaw could allow a remote attacker to gain privileges on the affected server. The available documents do not specify a patch or version that fixes the issue, nor provide exploit de...
CVE-2001-0276
The vulnerability CVE-2001-0276 affects BadBlue Personal Edition (1.02.07) where ext.dll can be invoked directly without arguments, causing an error message that reveals the server’s physical path. This is a path disclosure issue in the web server software. The available connected documents confi...
Microsoft IIS 4.05.05.1 - Authentication Method Disclosure
Microsoft IIS 4.05.05.1 - Authentication Method Disclosure source: https://www.securityfocus.com/bid/4235/info Microsoft IIS supports Basic and NTLM authentication. Reportedly, the authentication methods supported by a given IIS server can be revealed to an attacker through the inspection of...
Lotus Domino url bypass
--------------------------------------------------------------------------- Web: http://qb0x.net Author: Gabriel A. Maggiotti Date: Febrary 03, 2002 E-mail: [email protected] --------------------------------------------------------------------------- General Info ------------ Problem Type :...
Hypermail SSI Vulnerability
Hypermail SSI Vulnerability qDefense Advisory Number QDAV-2001-11-1 Product: Hypermail Vendor: Hypermail Development http://www.hypermail.org Severity: Remote; Attacker may be able to execute arbitrary commands on servers that run Hypermail and SSI Vendor Status: Vendor contacted; patch released ...
RSA Security ACE/Agent for Windows, ACE/Agent for Windows NT, and ACE/Agent for Windows 2000 do not properly handle URL encoded characters in URL
Overview RSA Security ACE/Agent for Windows, ACE/Agent for Windows NT, and ACE/Agent for Windows 2000 contain a vulnerability in which the ACE/Agent does not properly handle URL encoded characters contained in a URL. A specially crafted request may bypass authentication and expose the contents of...
CVE-1999-0756
ColdFusion Administrator with Advanced Security enabled allows remote users to stop the ColdFusion server via the Start/Stop utility...
CVE-1999-1522
Vulnerability in htmlparse.pike in Roxen Web Server 1.3.11 and earlier, possibly related to recursive parsing and referer tags in RXML. Public details on affected versions, root cause, impact and fixes are not provided in the connected documents.
Textor Webmasters Ltd (listrec.pl)
Last update of listrec.pl Jon Wright 11/11/1998. This script has vulnerability does not filter input of the user which allows to carry out commands from WebServer. EXPLOIT: www.server.com/cgi-bin/common/listrec.pl? APP=qmh-news&TEMPLATE=;ls| XP-TEAM...
Tripwire for Webpages Installation Disclosure
The remote host is running Tripwire for Webpages, a commercial product to monitor for changes in web pages. This information may prove useful to anyone doing reconnaissance before launching an actual attack. %NASLMINLEVEL 70300 C Tenable Network Security include'deprecatednasllevel.inc';...
CVE-2001-0571
Directory traversal vulnerability in the web server for 1 Elron Internet Manager IM Message Inspector and 2 Anti-Virus before 3.0.4 allows remote attackers to read arbitrary files via a .. dot dot in the requested URL...
Sambar Server 4.4/5.0 - 'pagecount' File Overwrite
source: https://www.securityfocus.com/bid/3091/info Sambar Server is a multi-threaded HTTP server for Microsoft Windows and Unix systems. Sambar WWW Server is bundled with a sample script'pagecount' which creates temporary files on the host. However, it is possible for a remote attacker to craft ...
1C: Arcadia Internet Store 1.0 - Path Disclosure
source: https://www.securityfocus.com/bid/2904/info 1C: Arcadia Internet Store is a online shopping utility for Microsoft Windows NT/2000 that is fully integratable with 1C: Enterprise, another popular Russian web-commerce utility. One of the components of this package, 'tradecli.dll', allows use...
Security Bulletin MS01-033
The following is a Security Bulletin from the Microsoft Product Security Notification Service. Please do not reply to this message, as it was sent from an unattended mailbox. -----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Uncheck...
SiteWare 2.5/3.0/3.1 Editor Desktop - Directory Traversal
source: https://www.securityfocus.com/bid/2868/info Screaming Media is a provider for custom web content. SiteWare Editor Desktop is the web-based administration tool for managing Screaming Media content. SiteWare Editor Desktop is prone to directory traversal attacks which can lead to disclosure...
Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator
Post date: 05/22/01 Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator Overview A potential security vulnerability has been discovered in Applications Desktop Integrator ADI version 7.X for Oracle E-Business Suite Release 11i. A debug version of the FNDPUB11I.DLL...