5285 matches found
CIMcheck2.pl
! c:\perl\bin\perl.exe CIMcheck 1.2 - Compaq Insight Manager Exploit Checker By Neon-Lenz ------------------------------------------------------------------ Yea i know this little script is very easy to code and lame, but what the hell. This should do the job. Assuming i'm still learning Perl...
WebServer Pro 2.3.7 Vulnerability
-- WebSite Pro 2.3.7 Vulnerability -- WebSite Pro is a Web Server for Win95/98/NT plataforms. The vulnerability or bad server administration allow any user to create arbitrary files with arbitrary text on the victim machine, from the Internet Web Browser. By a default installation any user can...
CVE-2000-0623
Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header...
NAI Net Tools PKI Server 1.0 - 'strong.exe' Remote Buffer Overflow
source: https://www.securityfocus.com/bid/1536/info Certain versions of Network Associates Inc.'s Net Tools PKI Public Key Infrastructure server ship with a buffer overflow vulnerability which could lead to a remote compromise of the system running the PKI server. The problem lies within the...
NAI Net Tools PKI Server 1.0 - Format String
source: https://www.securityfocus.com/bid/1538/info Certain versions of Network Associates Inc.'s Net Tools PKI Public Key Infrastructure server ship with a vulnerability which allows remote attackers to execute arbitrary commands on the system which the PKI server resides. The problem lies withi...
Дырка в Bajie Webserver
Можно узнать физическое расположение файлов, а обратный путь в директории позволяет получить доступ к любому файлу в системе...
Two security flaws in Bajie Webserver
More junk brought to you by the MDMA Crew www.mdma.za.net Two security flaws in the Bajie Webserver Bajie is a freeware HTTP daemon written in Java and available from TuCows. We found two vulnerabilities in it... The sample Java servlet at /servlet/test/pathInfo/test gives away a real path eg...
bajie.webserver.txt
More junk brought to you by the MDMA Crew Two security flaws in the Bajie Webserver Bajie is a freeware HTTP daemon written in Java and available from TuCows. We found two vulnerabilities in it... The sample Java servlet at /servlet/test/pathInfo/test gives away a real path eg. /www/html or...
Roxen WebServer 2.0.x - %00 Request FileDirectory Disclosure
Roxen WebServer 2.0.x - %00 Request FileDirectory Disclosure source: https://www.securityfocus.com/bid/1510/info If a request containing the null character %00 is made to the Roxen Web Server, the server will return directory contents, and the source of unparsed scripts and html pages. For exampl...
Roxen WebServer 2.0.x - '%00' Request File/Directory Disclosure
source: https://www.securityfocus.com/bid/1510/info If a request containing the null character %00 is made to the Roxen Web Server, the server will return directory contents, and the source of unparsed scripts and html pages. For example, a request to http://www.server.com/%00 Will return the...
gnu-pop3d (FTGate problem), Savant Webserver, Guild FTPd
Yo, Errr... Sorry about saying gnu-pop3d had the same problem as FTGate - don't know how that got in my list - I assume from posting after a rather hectic party and before that vital cup of coffee the next day. : Apologies, all. Anyway, I found a stack overflow in the Savant webserver the other d...
mdma-5.savant.txt
MDMA Advisory 5 by Andrew Lewis aka. Wizdumb Reading of CGI Scripts under Savant Webserver It is possible to view the source of CGI scripts running under the Savant Webserver by omitting the HTTP version from your request. For example, we connect to port 80 of the server and type "GET...
MDMA Advisory #5: Reading of CGI Scripts under Savant Webserver
MDMA Advisory 5 by Andrew Lewis aka. Wizdumb Reading of CGI Scripts under Savant Webserver It is possible to view the source of CGI scripts running under the Savant Webserver by omitting the HTTP version from your request. For example, we connect to port 80 of the server and type "GET...
Sambar Server /sysadmin Default Accounts
The Sambar webserver is running. It provides a web interface for configuration purposes. The admin user has no password and there are some other default users without passwords. Everyone could set the HTTP-Root to c:\ and delete your files! this may be a false positive - go to...
Mozilla Bugzilla 2.42.62.82.10 - Arbitrary Command Execution
Mozilla Bugzilla 2.42.62.82.10 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/1199/info Bugzilla is a web-based bug-tracking system based on Perl and MySQL. It allows people to submit bugs and catalogs them. Bugzilla is prone to a vulnerability which may allow remote user...
UltraBoard 1.6 - Denial of Service
UltraBoard 1.6 - Denial of Service source: https://www.securityfocus.com/bid/1175/info UltraBoard 1.6 and possibly all 1.x versions and the new beta Ultraboard 2000 are vulnerable to this Denial of Service attack. A remote user is able to expend all of the available resources of the webserver by...
UltraBoard 1.6 - Denial of Service
source: https://www.securityfocus.com/bid/1175/info UltraBoard 1.6 and possibly all 1.x versions and the new beta Ultraboard 2000 are vulnerable to this Denial of Service attack. A remote user is able to expend all of the available resources of the webserver by using a specially-devised request t...
ultrascripts ultraboard 1.6 - Directory Traversal
ultrascripts ultraboard 1.6 - Directory Traversal source: https://www.securityfocus.com/bid/1164/info UltraBoard 1.6 and possibly all 1.x versions is vulnerable to a directory traversal attack that will allow any remote browser to download any file that the webserver has read access to. On Window...
CVE-1999-0897
CVE-1999-0897 affects iChat ROOMS Webserver and is a directory traversal vulnerability that allows remote attackers to read arbitrary files. Multiple connected sources confirm the issue: iChat ROOMS Webserver (and iChat Server versions up to 3.00 per Nessus) are susceptible to a .. traversal atta...
CVE-1999-0897
iChat ROOMS Webserver allows remote attackers to read arbitrary files via a .. dot dot attack...