565 matches found
CVE-2004-2734
webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with an inconsistent lowercase directory tag for a volume, which allows remote attackers to bypass access control to the WEB-INF folder...
AuraCMS 1.5rc Multiple Remote SQL Injection Vulnerabilities
No description provided by source. AuraCMS version 1.5rc - Multiple Remote SQL Injection Vulnerabilities Vendor : http://www.auracms.org/ Ditemukan oleh : k1tk4t - k1tk4t4tnewhack.org Lokasi : Indonesia -- newhackdotorg @ irc.dal.net // Kutu pada berkas 'hal.php' baris-7 $perintah="SELECT FROM...
CVE-2007-4529
The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin's own servers, as demonstrated by the 1 AdminAddServer, 2...
CVE-2007-4529
The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin's own servers, as demonstrated by the 1 AdminAddServer, 2...
Design/Logic Flaw
The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin's own servers, as demonstrated by the 1 AdminAddServer, 2...
CVE-2007-4529
The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin's own servers, as demonstrated by the 1 AdminAddServer, 2...
CVE-2007-4529
The CVE concerns TeamSpeak Server 2.0.20.1 WebAdmin: remote authenticated users with the ServerAdmin flag can elevate privileges beyond their own servers. By issuing requests to .tscmd URIs with a modified serverid (e.g., add_server.tscmd, ask_delete_server.tscmd, start_server.tscmd, stop_server....
RaidenHTTPD workspace.php ulang Parameter Local File Inclusion
Binary data 5103.prm...
[Full-disclosure] Teamspeak Server 2.0.20.1 Vulnerabilities
Hi everyone, several months ago I discovered some vulnerabilities in TeamSpeak Server WebAdmin interface. I sent the advisory and exploit to the developers about two months ago 11 03 2007, but the server is still vulnerable, today. Affected software: Teamspeak Server 2.0.20.1 Looks like the beta...
ghh-disclose.txt
By Cr@zyKing [email protected] Biyosecurity.Net & Expw0rm.Com Thanks : Liz0 & DarkXBoyZ & Eno7 & ApAci & Uyuss & CrackersChild & Th343k1R & Xoron & Ajannn Portal : GHH Wersion : 1.1 GHH Portal 1.1 passwd.txt Remote Password Disclosure Vulnerability Demo : http://ghh.sourceforge.net/demo Vuln :...
GHH Portal 1.1 (passwd.txt) Remote Password Disclosure Vulnerability
By Cr@zyKing [email protected] Biyosecurity.Net & Expw0rm.Com Thanks : Liz0 & DarkXBoyZ & Eno7 & ApAci & Uyuss & CrackersChild & Th343k1R & Xoron & Ajannn Portal : GHH Wersion : 1.1 GHH Portal 1.1 passwd.txt Remote Password Disclosure Vulnerability Demo : http://ghh.sourceforge.net/demo Vuln :...
NetMail WebAdmin username buffer overflow
Added: 03/16/2007 CVE: CVE-2007-1350 BID: 22857 OSVDB: 33886 Background Novell NetMail WebAdmin is a web-based administration interface which runs an HTTP server on port 89/TCP. Problem A buffer overflow vulnerability in Novell NetMail WebAdmin allows remote attackers to execute arbitrary command...
NetMail WebAdmin username buffer overflow
Added: 03/16/2007 CVE: CVE-2007-1350 BID: 22857 OSVDB: 33886 Background Novell NetMail WebAdmin is a web-based administration interface which runs an HTTP server on port 89/TCP. Problem A buffer overflow vulnerability in Novell NetMail WebAdmin allows remote attackers to execute arbitrary command...
NetMail WebAdmin username buffer overflow
Added: 03/16/2007 CVE: CVE-2007-1350 BID: 22857 OSVDB: 33886 Background Novell NetMail WebAdmin is a web-based administration interface which runs an HTTP server on port 89/TCP. Problem A buffer overflow vulnerability in Novell NetMail WebAdmin allows remote attackers to execute arbitrary command...
NetMail WebAdmin username buffer overflow
Added: 03/16/2007 CVE: CVE-2007-1350 BID: 22857 OSVDB: 33886 Background Novell NetMail WebAdmin is a web-based administration interface which runs an HTTP server on port 89/TCP. Problem A buffer overflow vulnerability in Novell NetMail WebAdmin allows remote attackers to execute arbitrary command...
Novell NetMail WebAdmin Username Stack Buffer Overflow (CVE-2007-1350)
Novell NetMail is an electronic mail server product that supports various email access and exchange protocols, including IMAP Internet Message Access Protocol and NMAP Network Messaging Application Protocol.WebAdmin is a browser based administrative tool used to manage NetMail...
Novell NetMail WebAdmin buffer overflow
TCP/89 HTTP Basic authentication buffer overflow...
Immunity Canvas: NETMAIL_WEBADMIN
Name| netmailwebadmin ---|--- CVE| CVE-2007-1350 Exploit Pack| CANVAS Description| Novell Netmail WebAdmin Overflow Notes| CVE Name: CVE-2007-1350 VENDOR: Novell VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-07-009.html CVE Url:...
Stack overflow
Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 allows remote attackers to execute arbitrary code via a long username during HTTP Basic authentication...
CVE-2006-6704
Cross-site scripting XSS vulnerability in the Webadmin in @Mail before 4.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving "unescaped data in the database."...