145 matches found
CVE-2006-2917
Directory traversal vulnerability in the IMAP server in WinGate 6.1.2.1094 and 6.1.3.1096, and possibly other versions before 6.1.4 Build 1099, allows remote authenticated users to read email of other users, or perform unauthorized operations on directories, via the 1 CREATE, 2 SELECT, 3 DELETE, ...
CVE-2006-2917
WinGate IMAP server directory traversal vulnerability (CVE-2006-2917) affects WinGate 6.1.2.1094 and 6.1.3.1096, and possibly earlier builds before 6.1.4 Build 1099. An authenticated remote user can exploit directory traversal in IMAP commands (CREATE, SELECT, DELETE, RENAME, COPY, APPEND, LIST) ...
CVE-2006-2917
Directory traversal vulnerability in the IMAP server in WinGate 6.1.2.1094 and 6.1.3.1096, and possibly other versions before 6.1.4 Build 1099, allows remote authenticated users to read email of other users, or perform unauthorized operations on directories, via the 1 CREATE, 2 SELECT, 3 DELETE, ...
WinGate < 6.1.4 Build 1099 IMAP Service Traversal Arbitrary Mail Access
Binary data 3681.prm...
wingatex.pl.txt
Proof of concept not for "in the wild" kiddies QBik Wingate version 6.1.1.1077 remote exploit for Win2k SP4 german by kcope in 2006 use IO::Socket; if $ARGV0 eq "" print "param1 = remote host"; exit; win32bind - EXITFUNC=seh LPORT=4444 Size=709 Encoder=PexAlphaNum http://metasploit.com my...
Immunity Canvas: WINGATE_HTTPPROXY
Name| wingatehttpproxy ---|--- CVE| CVE-2006-2926 Exploit Pack| CANVAS Description| Wingate 6.1.1 remote exploit Notes| CVE Name: CVE-2006-2926 VENDOR: Wingate.com Repeatability: You get one shot References: CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2926 Date public:...
Stack overflow
Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate 6.1.1.1077 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL HTTP request...
CVE-2006-2926
Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate 6.1.1.1077 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL HTTP request...
CVE-2006-2926
CVE-2006-2926 describes a stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate (6.1.1.1077 and earlier). Remote attackers could trigger it by sending a malformed long URL in HTTP requests to the proxy on port 80, potentially causing denial of service or arbitrary code execution. Pu...
WinGate < 6.1.3 POST Request Buffer Overflow
Binary data 3642.prm...
WinGate POST Request Buffer Overflow
The remote host appears to be running WinGate Proxy Server, a Windows application for managing and securing Internet access. According to its banner, the version of WinGate installed on the remote host is affected by a buffer overflow vulnerability in its HTTP proxy service. An attacker with acce...
QBik WinGate WWW Proxy Server 6.1.1.1077 - POST Remote Buffer Overflow
QBik WinGate WWW Proxy Server 6.1.1.1077 - POST Remote Buffer Overflow Proof of concept not for "in the wild" kiddies QBik Wingate version 6.1.1.1077 remote exploit for Win2k SP4 german by kcope in 2006 use IO::Socket; if $ARGV0 eq "" print "param1 = remote host"; exit; win32bind - EXITFUNC=seh...
[Full-disclosure] MDaemon NOT vulnerable .. sorry for the advisory.. QBik Wingate is vulnerable
Hello this is kcope, recently I thought I had discovered a remote preauth vulnerability in MDaemon latest version 9.0.1/9.0.2. And it really looked like one in the debugger OllyDbg .. so I posted it to full disclosure. Afterwards I tried to write an exploit, and yes I succeeded! But the problem i...
QBik Wingate 6.1.1.1077 (POST) Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ============================================================= QBik Wingate 6.1.1.1077 POST Remote Buffer Overflow Exploit ============================================================= Proof of concept not for "in the wild" kiddies QBik...
WinGate proxy server buffer overflow
Buffer overflow on oversized POST request...
QBik WinGate WWW Proxy Server 6.1.1.1077 - 'POST' Remote Buffer Overflow
Proof of concept not for "in the wild" kiddies QBik Wingate version 6.1.1.1077 remote exploit for Win2k SP4 german by kcope in 2006 use IO::Socket; if $ARGV0 eq "" print "param1 = remote host"; exit; win32bind - EXITFUNC=seh LPORT=4444 Size=709 Encoder=PexAlphaNum http://metasploit.com my...
CVE-2004-0578
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash // characters in a URL request to the wingate-internal directory...
CVE-2004-0577
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files from the root directory via a URL request to the wingate-internal directory...
WinGate Telnet Proxy Server Detection
Binary data 1920.prm...
CVE-2004-0578
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash // characters in a URL request to the wingate-internal directory...