209 matches found
CVE-1999-1357
Netscape Communicator 4.04 through 4.7 and possibly other versions in various UNIX operating systems converts the 0x8b character to a "" sign, which could allow remote attackers to attack other clients via cross-site scripting CSS in CGI programs that do not filter these characters...
SSH2 3.0 - Short Password Login
SSH2 3.0 - Short Password Login source: https://www.securityfocus.com/bid/3078/info An input validation error exists in version 3.0.0 of the SSH daemon sshd running on Unix platforms. It may be possible for remote users to log in to accounts for which there are two or less characters in the...
SSH2 3.0 - Short Password Login
source: https://www.securityfocus.com/bid/3078/info An input validation error exists in version 3.0.0 of the SSH daemon sshd running on Unix platforms. It may be possible for remote users to log in to accounts for which there are two or less characters in the password field of the system password...
GNU groff 1.1x - xploitation Via LPD
GNU groff 1.1x - xploitation Via LPD // source: https://www.securityfocus.com/bid/3103/info lpd is the print spooling daemon. It is used to support network printing on a variety of unix platforms. The version of lpd that ships with linux systems invokes groff to process documents that are to be...
Acme.Server v1.7 of 13nov96 Directory Browsing
---------------------------------------------------------------------- Date: 31.05.2001 Affected Software: Acme.Serve v1.7 of 13nov96 http://www.acme.com Exploit: Browsing of directories and files allowed to unauthorized users Keywords: Cisco Secure Administration, Netscape FastTrack, ... Contact...
boa.server.txt
ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt Release: Public S 2 1 S E C http://www.s21sec.com...
The ht:Dig Group ht:Dig 3.1.13.1.23.1.33.1.43.2 .0b1 - Arbitrary File Inclusion
The ht:Dig Group ht:Dig 3.1.13.1.23.1.33.1.43.2 .0b1 - Arbitrary File Inclusion source: https://www.securityfocus.com/bid/1026/info ht://dig is a web content search engine for Unix platforms. The software is set up to allow for file inclusion from configuration files. Any string surrounded by the...
nmap.txt
Subject: Re: CERT Summary CS-99-03 To: [email protected] From the CERT Summary released yesterday: 1. RPC Vulnerabilities We have received many reports of exploitations involving three RPC vulnerabilties. Such exploitations can lead to root compromise on systems that implement these RPC...
ciac-J-042.web.security.txt
Date: Tue, 18 May 1999 09:09:34 -0700 PDT From: CIAC Mail User To: [email protected] Subject: CIAC Bulletin J-042: Web Security For Public Release -----BEGIN PGP SIGNED MESSAGE----- The U.S. Department of Energy Computer Incident Advisory Capability / | /\ / \ | / \ \ INFORMATION...