CVE-2001-1337

The CVE-2001-1337 entry concerns Beck IPC GmbH IPC@CHIP Embedded-Webserver. Reported impact is a remote denial of service triggered by a long HTTP request. The available information does not specify affected versions, exact vulnerable component or root cause details, nor any published exploitable...

CVE-2002-0291

Dino's Webserver 1.2 is affected by CVE-2002-0291. The vulnerability allows remote attackers to cause a denial of service (CPU consumption) and potentially execute arbitrary code by sending several large HTTP requests in a short period. The commonly cited impact is partial availability compromise...

CVE-2002-0323

The CVE-2002-0323 issue affects ScriptEase:WebServer . A vulnerability in how the target file is passed in the URL allows remote attackers to read arbitrary files, yielding potential partial confidentiality impact. The NVD entry lists a base score of 5.0 (Medium) with network access and no authen...

CVE-2002-0323

comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL...

CVE-2001-1337

Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to cause a denial of service via a long HTTP request...

Buffer overflow and directory traversal in 4D webserver

No description provided...

iXsecurity.20020404.4d_webserver.a

iXsecurity Security Vulnerability Report No: iXsecurity.20020404.4dwebserver.a ================================== Vulnerability Summary --------------------- Problem: The 4D webserver has a buffer overflow condition. Threat: An attacker could make the webserver crash and possibly execute arbitrar...

KPMG-2002012: Sambar Webserver Serverside Fileparse Bypass

-------------------------------------------------------------------- -=Sambar Webserver Serverside Fileparse Bypass=- courtesy of KPMG Denmark BUG-ID: 2002012 Released: 17th Apr 2002 -------------------------------------------------------------------- Problem: ======== A flaw in the serverside UR...

[NT] Sambar Webserver Serverside Fileparse Bypass

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion When was the last time you checked your server's security? How about a monthly report? http://www.AutomatedScanning.com - Know that you're...

iXsecurity.20020327.tivoli_tsm_dsmcad.a

iXsecurity Security Vulnerability Report No: iXsecurity.20020327.tivolitsmdsmcad.a =========================================== Vulnerability Summary --------------------- Problem: The Tivoli Storage Manager webserver, running on port 1581 has a buffer overflow condition. Threat: An attacker could...

iXsecurity.20020314.csadmin_fmt.a

iXsecurity Security Vulnerability Report No: iXsecurity.20020314.csadminfmt.a ======================================== Vulnerability Summary --------------------- Problem: Cisco Secure ACS webserver has a format string vulnerability. Threat: An attacker could send an "invalid" URL to the webserve...

CVE-2002-0111

Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. dot dot in the URL...

Apache Win32 1.3.x2.0.x - Batch File Remote Command Execution

Apache Win32 1.3.x2.0.x - Batch File Remote Command Execution source: https://www.securityfocus.com/bid/4335/info Special characters such as | may not be filtered by the batch file handler when a web request is made for a batch file. As a result, a remote attacker may be able to execute arbitrary...

CVE-2001-0558

CVE-2001-0558 affects Jana Webserver 2.01 beta 1 and earlier. A remote attacker can cause a denial of service by sending a URL request that includes an MS-DOS device name (e.g., GET /aux HTTP/1.0). Connected sources corroborate the DOS impact via MS-DOS device names; OpenVAS/Nessus references lis...

CVE-2001-0558

T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name i.e. GET /aux HTTP/1.0...

Xerver 2.10 - Multiple Request Denial of Service Vulnerabilities

Xerver 2.10 - Multiple Request Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/4254/info Xerver is a freely available webserver, written in Java. It will run on any operating system with Java installed, including Microsoft Windows, Unix/Linux variants, MacOS, etc. It h...

Xerver 2.10 - Multiple Request Denial of Service Vulnerabilities

source: https://www.securityfocus.com/bid/4254/info Xerver is a freely available webserver, written in Java. It will run on any operating system with Java installed, including Microsoft Windows, Unix/Linux variants, MacOS, etc. It has been reported that sending an excessive number of requests for...

Working Resources BadBlue 1.51.6 - Directory Traversal

Working Resources BadBlue 1.51.6 - Directory Traversal source: https://www.securityfocus.com/bid/4179/info Working Resources BadBlue is a webserver intended to share various resources and is developed for Microsoft Windows environments. BadBlue is prone to directory traversal attacks. It is...

ScriptEase:WebServer Edition vulnerability

Program: ScriptEase:WebServer Edition Url: www.nombas.com Problem: Any user can read files on server using one of examle scripts: comment2.jse Systems affected: Linux, Novell Netware, Windows 9x/NT/2k Example: WindowsNovell Netware:...

Dino's Webserver v1.2 DoS, possible overflow

Dino's WebServer v1.2 is vulnerable to a Denial of Service attack with a possible buffer overflow or heap overflow. Explanation: Given a series of requests the server will hang at 99 CPU. To Dino's actually, Anders G. Jensen credit, the priority is low enough that other programs appear to be taxe...