Sambar Webserver v5.1 DoS Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sambar Webserver v5.1 DoS Vulnerability Type: DoS, crashes Daemon Release Date: December 16, 2002 Product / Vendor: Sambar Server is a multi-threaded HTTP server for Microsoft Windows and Unix systems. http://www.sambar.com Summary: Sambar Webserver i...

PHP-Nuke 4.x/5.x - Arbitrary File Inclusion

source: https://www.securityfocus.com/bid/3889/info PHPNuke is a website creation/maintenance tool. The 'index.php' script has a feature which allows users to include files. Due to insufficent input validation, it is possible to include files located on a remote server. Arbitrary code in the...

File Transversal Vulnerability in Dino's WebServer

Dino's WebServer, File Transversal Vulnerability Date: January 8, 2002 Author: CaMaLeOn Affected: Dino's WebServer Tested by: CaMaLeOn, DraZiw, WiZaRd Versions Test: 1.x Vendor Status: Notified Plattaforms: win9x, win2000, WinNT Dino's Webserver is a small and very simple to use web server that i...

Savant Webserver Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Savant Webserver Buffer Overflow Vulnerability Type: DoS, crashes Daemon Release Date: January 5, 2002 Product / Vendor: Savant is a freeware open source web server that runs on Windows 95, 98, ME, NT, and 2000, turning any desktop computer into a...

WikkiTikkiTavi 0.x - Remote File Inclusion

WikkiTikkiTavi 0.x - Remote File Inclusion source: https://www.securityfocus.com/bid/3946/info WikkiTikkiTavi is a freely available engine for running a Wiki site. Wiki sites are web communities which are based on the idea that every webpage is editable by users of the website. WikkiTikkiTavi is...

Alteon AceDirector - Half-Closed HTTP Request IP Address Revealing

source: https://www.securityfocus.com/bid/3964/info Alteon ACEdirector is a hardware solution distributed by Nortel Networks. ACEdirector runs the Nortel WebOS operating system. It is possible to retrieve the real IP addresses of webservers that are managed by an ACEdirector. When a client is...

easynews 1.5 let's remote users modify database

Hey, that's my first submission so don't expect anything spectacular. There are a few bugs in Easynews 1.5: Short Description: Easynews 1.5 - database and templates remotly modifieable, cross site scripting, local users gain admin pass, and stuff : Found by: markus [email protected] Vendor...

Xitami Webserver stores admin password in clear text.

I am releasing this a bit early as the vendor has been aware of this issue for a while now. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Vapid Labs Larry W. Cashdollar Xitami Webserver clear text password storage vulnerability. Date Published: 11/23/2001 Advisory ID: 11232001-02 Title: Xitami...

New Roxen Webserver Library Issues

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ++++++++++++++GOBBLES+SECURITY+RESEARCH+TEAM+INCORPORATED+++++++++++++++++ ALERT! ALERT! A NEW BUFFER OVERFLOW IN LIBRARY FROM ROXEN! ALERT! ALERT! ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++...

IRM Security Advisory: Xcache Path Disclosure Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- IRM Security Advisory No. 001 Xcache Webserver Cache Path Disclosure Vulnerability Vulnerablity Type / Importance: Information Leakage / Medium Problem discovered: Mon, 17 Sep 2001...

CVE-1999-1068

Oracle Webserver 2.1 is affected when serving PL/SQL stored procedures. A long HTTP GET request can trigger a denial-of-service by crashing the remote web server, via the cgi /ews-bin/fnord pathway. The vulnerability is documented in CVE-1999-1068 and is reflected in the Nessus plugin OWS_OVERFLO...

CVE-1999-1081

The CVE-1999-1081 entry describes a vulnerability in the files.pl script of the Novell WebServer Examples Toolkit 2, which allows remote attackers to read arbitrary files. The connected documents do not provide additional exploitation details, root-cause analysis, affected versions beyond “Toolki...

CVE-1999-1125

Oracle Webserver 2.1 and earlier runs setuid root; the configuration file is owned by the oracle account. This allows any local or remote attacker with oracle access to gain privileges or modify arbitrary files by altering the configuration file. No remediation details are provided in the supplie...

CVE-1999-1068

Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request...

CVE-1999-1081

Vulnerability in files.pl script in Novell WebServer Examples Toolkit 2 allows remote attackers to read arbitrary files...

CVE-1999-1125

Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacker who obtains access to the oracle account to gain privileges or modify arbitrary files by modifying the configuration file...

RedHat Linux 7.0 Apache - Remote Username Enumeration

RedHat Linux 7.0 Apache - Remote Username Enumeration source: https://www.securityfocus.com/bid/3335/info Versions of Apache webserver shipping with Red Hat Linux 7.0 and possibly other Apache distributions install with a default misconfiguration which could allow remote users to determine whethe...

RedHat Linux 7.0 Apache - Remote Username Enumeration

source: https://www.securityfocus.com/bid/3335/info Versions of Apache webserver shipping with Red Hat Linux 7.0 and possibly other Apache distributions install with a default misconfiguration which could allow remote users to determine whether a give username exists on the vulnerable system...

directorymanager bug

Directory Manager Execute Command !BUG! Version Affected : Directory Manager 0.9 Directory Manager is a directory manager ; i realy don't know what he does. it has a serious security flaw, which allows any person to execute commands on attacked system as webserver-user. From editimage.php : if !$...

CVE-2001-0971

Directory traversal vulnerability in ACI 4d webserver allows remote attackers to read arbitrary files via a .. dot dot or drive letter e.g., C: in an HTTP request...