5317 matches found
Novell Groupwise Enhancement Pack 5.5 Enhancement Pack - Denial of Service
Novell Groupwise Enhancement Pack 5.5 Enhancement Pack - Denial of Service source: https://www.securityfocus.com/bid/972/info By requesting a long URL from a Novell Groupwise 5.5 webserver with the Enhancement Pack installed, it is possible to cause the server to abend, the Java.nlm to take up al...
poorman.txt
Missing traling '/' Remote Denial of Service Attack Advisory february 5th 2000 UPDATED February 8th Please, refer to http://bebugs.be.com/devbugs/detail.php3?oid=1229984 as it makes this advisory obsolete... I discovered this very recently, but it seems it was in the Be inc. bug database for a...
CVE-1999-0232
CVE-1999-0232 : Affects NCSA WebServer 1.5c; a buffer overflow leads to remote access. Connected documents confirm the vulnerability but do not provide a remediation or patch details. Exploitation status is not specified in the sources.
CVE-1999-0232
Buffer overflow in NCSA WebServer version 1.5c gives remote access...
CVE-1999-0235
Buffer overflow in NCSA WebServer 1.4.1 and below gives remote access...
CVE-1999-0235
CVE-1999-0235 - Details : A buffer overflow in NCSA WebServer (versions 1.4.1 and below) can allow remote access. The root cause is an overflow in the server’s handling of input, leading to arbitrary code execution or service compromise as described across connected records. Affected software: NC...
cern-pss.txt
$%$$%$$%$$%$$%$$%$$%$$%$$%$$%$ $% CERN 3.0A Heap overflow advisory %$ $%$$%$$%$$%$$%$$%$$%$$%$$%$$%$ $% By Scrippie %$ $ Phreak.nl $ $%$$%$$%$$%$$%$$%$$%$$%$$%$$%$$ $ Love To: Maja, Dopey, Hester $ $%$$%$$%$$%$$%$$%$$%$$%$$%$$%$$ there is a heap overflow that wastes memory space in the CERN/3.0A...
AnalogX SimpleServer:WWW 1.0.1 - GET Buffer Overflow
source: https://www.securityfocus.com/bid/906/info The SimpleServer:WWW personal webserver package from AnalogX can be compromised due to an overflowable buffer. If a GET request longer than 1000 bytes is received, the software will crash and data from the request gets pased to the EIP, meaning...
BroadGun Software CamShot WebCam 2.5 - GET Buffer Overflow
source: https://www.securityfocus.com/bid/905/info CamShot is a webserver designed to work in conjunction with computer video cameras. The software will crash, and possibly allow for execution of arbitrary code, if a GET request of more than 2000 bytes is received. DoS attack: GET 2000 chars...
Alt-N WorldClient Pro 2.0.0.02.0.1.0Standard 2.0.0.0 - Long URL Denial of Service
Alt-N WorldClient Pro 2.0.0.02.0.1.0Standard 2.0.0.0 - Long URL Denial of Service source: https://www.securityfocus.com/bid/823/info Alt-N's WorldClient is an email webserver that allows it's users to retrieve email via HTTP. It is susceptible to denial of service attacks due to an unchecked buff...
Alt-N WorldClient Pro 2.0.0.0/2.0.1.0/Standard 2.0.0.0 - Long URL Denial of Service
source: https://www.securityfocus.com/bid/823/info Alt-N's WorldClient is an email webserver that allows it's users to retrieve email via HTTP. It is susceptible to denial of service attacks due to an unchecked buffer in the request handler. Supplying a long url will crash the server. http...
Tektronix Phaser Network Printer 740750750DP840930 PhaserLink WebServer - Retrieve Administrator Password
Tektronix Phaser Network Printer 740750750DP840930 PhaserLink WebServer - Retrieve Administrator Password source: https://www.securityfocus.com/bid/806/info Certain versions of the Tektronix PhaserLink printer ship with a webserver designed to help facilitate configuration of the device. This...
Tektronix Phaser Network Printer 740/750/750DP/840/930 PhaserLink WebServer - Retrieve Administrator Password
source: https://www.securityfocus.com/bid/806/info Certain versions of the Tektronix PhaserLink printer ship with a webserver designed to help facilitate configuration of the device. This service is essentially administrator level access as it can completely modify the system characteristics,...
Computer Software Manufaktur Alibaba 2.0 - Multiple CGI Vulnerabilities
Computer Software Manufaktur Alibaba 2.0 - Multiple CGI Vulnerabilities // source: https://www.securityfocus.com/bid/770/info There are several CGI programs that ship with the Alibaba webserver. Many of these do not do proper input handling, and therefore will allow requests for access to files...
Computer Software Manufaktur Alibaba 2.0 - Multiple CGI Vulnerabilities
// source: https://www.securityfocus.com/bid/770/info There are several CGI programs that ship with the Alibaba webserver. Many of these do not do proper input handling, and therefore will allow requests for access to files outside of normal or safe webserver practice. This results in various...
url.live-1.0.txt
Hello URL Live! 1.0 WebServer for Windows95/98/NT which is released by Pacific Software Publishing, Inc. http://www.urllive.com/ also has a "../" security problem, any users can download any files on the victim host. example: http://www.xxx.yy.jp/../../../../config.sys ----- The Shadow Penguin...
Pacific Software URL Live! 1.0 - Directory Traversal
Pacific Software URL Live! 1.0 - Directory Traversal source: https://www.securityfocus.com/bid/746/info The URL Live! free webserver from Pacific software is susceptible to the "../" directory traversal vulnerability. By using the '../' string in a URL, an attacker can gain read access to files...
RFP9905.zeus.remote.root.txt
--- Advisory RFP9905 ------------------------------- rfp.labs ----------- Remote root compromise via Zeus webserver Zeus-search vulnerability --------------------------------- rain forest puppy / [email protected] -- Table of contents: - 1. Scope of problem - 2. Solution - 3. Miscellaneous Updates...
T. Hauck Jana Server 1.01.451.46 - Directory Traversal
T. Hauck Jana Server 1.01.451.46 - Directory Traversal source: https://www.securityfocus.com/bid/699/info The Jana webserver is susceptible to directory traversal attacks using multiple dots in the URL. If the request is made in specific formats, the server will send out files outside of the...
T. Hauck Jana Server 1.0/1.45/1.46 - Directory Traversal
source: https://www.securityfocus.com/bid/699/info The Jana webserver is susceptible to directory traversal attacks using multiple dots in the URL. If the request is made in specific formats, the server will send out files outside of the intended webroot. http ://target/./.././.././.././win.ini o...