Lucene search
K

98 matches found

OSV
OSV
added 2006/03/28 12:0 a.m.21 views

DSA-1021-1 netpbm-free - insecure program execution

Bulletin has no description...

7.5CVSS6AI score0.03741EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.64 views

poppassd USER overflow

The remote poppassd daemon crashes when a too long name is sent after the USER command. It might be possible for a remote cracker to run arbitrary code on this machine. OpenVAS Vulnerability Test $Id: poppassdtoolonguser.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: poppassd USER overflow...

5CVSS0.3AI score0.05522EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.22 views

TheServer clear text password

We were able to read the server.ini file It may contain sensitive information like clear text passwords. This flaw is known to affect TheServer. OpenVAS Vulnerability Test $Id: theservercleartext.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: TheServer clear text password Authors: Michel...

5CVSS6.1AI score0.01901EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.35 views

Xitami malformed header DoS

It is possible to freeze the remote web server by sending a malformed POST request. This is know to affect Xitami 2.5 and earlier versions. OpenVAS Vulnerability Test $Id: xitamiPOSTDoS.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Xitami malformed header DoS Authors: Michel Arboi Copyrigh...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.641 views

Header overflow against HTTP proxy

It was possible to kill the HTTP proxy by sending an invalid request with a too long header A cracker may exploit this vulnerability to make your proxy server crash continually or even execute arbitrary code on your system. OpenVAS Vulnerability Test $Id: avirtproxyoverflow.nasl 6702 2017-07-12...

7.5CVSS0.04858EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.46 views

Personal Web Sharing overflow

It was possible to kill the Personal Web Sharing service by sending it a too long request. A cracker may exploit this vulnerability to make your web server crash continually. OpenVAS Vulnerability Test $Id: PWSDoS.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Personal Web Sharing overflow...

5CVSS6.5AI score0.05116EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.161 views

Jigsaw webserver MS/DOS device DoS

It was possible to crash the Jigsaw web server by requesting /servlet/con about 30 times. A cracker may use this attack to make this service crash continuously. OpenVAS Vulnerability Test $Id: jigsawmsdosdevDoS.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Jigsaw webserver MS/DOS device Do...

5CVSS6.6AI score0.02827EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.61 views

Generic format string

The remote service is vulnerable to a format string attack An attacker may use this flaw to execute arbitrary code on this host. OpenVAS Vulnerability Test $Id: miscformatstring.nasl 4750 2016-12-12 15:39:21Z cfi $ Generic format string Authors: Michel Arboi Copyright: Copyright C 2002 Michel Arb...

0.8AI score
Exploits0References1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.1190 views

HTTP 1.0 header overflow

It was possible to kill the web server by sending an invalid request with a too long header From, If-Modified-Since, Referer or Content-Type A cracker may exploit this vulnerability to make your web server crash continually or even execute arbitrary code on your system. OpenVAS Vulnerability Test...

Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.281 views

Infinite HTTP request

It was possible to kill the web server by sending an invalid 'infinite' HTTP request that never ends. A cracker may exploit this vulnerability to make your web server crash continually or even execute arbirtray code on your system. OpenVAS Vulnerability Test $Id: wwwinfiniterequestDoS.nasl 6053...

5CVSS7AI score0.05268EPSS
Exploits1
OSV
OSV
added 2005/08/22 12:0 a.m.20 views

DSA-780-1 kdegraphics - wrong input sanitising

Bulletin has no description...

2.1CVSS5.9AI score0.00429EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/05/16 12:0 a.m.67 views

TFTPD Server Filename Handling Remote Overflow

The remote TFTP server dies when it receives a too big UDP datagram. An attacker may use this flaw to disable the server, or even execute arbitrary code on the system. C Tenable Network Security, Inc. Not tested against a vulnerable server! include"compat.inc"; if description scriptid18264;...

7.5CVSS5.7AI score0.09085EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2005/03/08 12:0 a.m.30 views

Eudora Internet Mail Server for Mac OS USER Overflow

The remote poppassd daemon crashes when a too long name is sent after the USER command. It might be possible for a remote attacker to run arbitrary code on this machine. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid17295; scriptversion"1.14";...

5CVSS6AI score0.05522EPSS
Exploits0References1
OSV
OSV
added 2005/03/08 12:0 a.m.26 views

DSA-692-1 kppp - design flaw

Bulletin has no description...

4.6CVSS6.1AI score0.0036EPSS
Exploits0
OSV
OSV
added 2005/01/20 12:0 a.m.27 views

DSA-651-1 squid - buffer overflow, integer overflow

Bulletin has no description...

5CVSS5.9AI score0.68776EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2004/11/18 12:0 a.m.13 views

PowerPortal index.php index_page Parameter SQL Injection

The remote host is using PowerPortal, a content management system, written in PHP. A vulnerability exists in the remote version of this product that could allow a remote attacker to perform a SQL injection attack against the remote host. An attacker could exploit this flaw to execute arbitrary SQ...

6.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/10/21 12:0 a.m.136 views

Faq-O-Matic fom.cgi Multiple Parameter XSS

The remote host runs Faq-O-Matic, a CGI-based system that automates the process of maintaining a FAQ. The remote version of this software is vulnerable to cross-site scripting attacks in the script 'fom.cgi'. With a specially crafted URL, an attacker can cause arbitrary code execution resulting i...

5CVSS5.8AI score0.07702EPSS
Exploits1References2
exploitpack
exploitpack
added 2004/10/10 12:0 a.m.13 views

WordPress 1.2 - HTTP Splitting

WordPress 1.2 - HTTP Splitting This script is C Tenable Network Security ifdescription scriptid15443; scriptbugtraqid11348; scriptversion "$Revision: 1.1 $"; name"english" = "WordPress HTTP Splitting Vulnerability"; scriptnameenglish:name"english"; desc"english" = " The remote host is running...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/27 12:0 a.m.32 views

Pinnacle ShowCenter Skin DoS

The remote host runs the Pinnacle ShowCenter web-based interface. The remote version of this software is vulnerable to a remote denial of service due to a lack of sanity checks on skin parameter. With a specially crafted URL, an attacker can deny service of the ShowCenter web-based interface...

5CVSS5.6AI score0.08097EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2004/09/24 12:0 a.m.34 views

aspWebCalendar calendar.asp SQL Injection

The remote host appears to be running aspWebCalendar, an ASP script designed to faciliate the integration of multiple calendars in a web- based application. There is a flaw in the remote software that could allow anyone to inject arbitrary SQL commands, which may in turn be used to gain...

7.5CVSS6AI score0.04077EPSS
Exploits1References1
Rows per page
Query Builder