26 matches found
EUVD-2004-2454
Malware in sbrugna...
EUVD-2007-3698
Malware in sbrugna...
EUVD-2004-2455
Malware in sbrugna...
Ada Image Server 0.6.6 SEH Overwrite
!/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image Server v0.6.6 SEH Overwrite...
Ada Image Server <= 0.6.7 imgsrv.exe Buffer Overflow
Exploit for unknown platform in category remote exploits ==================================================== Ada Image Server 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image Server v0.6.6 SEH Overwrite Discovered/Exploited by Blake Tested on XP...
Ada Image Server 0.6.7 - 'imgsrv.exe' Remote Buffer Overflow
!/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image Server v0.6.6 SEH Overwrite...
Ada Image Server 0.6.7 - imgsrv.exe Remote Buffer Overflow
Ada Image Server 0.6.7 - imgsrv.exe Remote Buffer Overflow !/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py...
Ada Image Server <= 0.6.7 imgsrv.exe Buffer Overflow
No description provided by source. !/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image...
Double directory traversal in ImgSvr 0.6.21
Luigi Auriemma Application: Ada Image server ImgSvr http://adaimgsvr.sourceforge.net Versions: = 0.6.21 and SVN = 28 Platforms: Windows and nix Bug: directory traversal Exploitation: remote Date: 24 Dec 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug ...
adaimage-traverse.txt
Luigi Auriemma Application: Ada Image server ImgSvr http://adaimgsvr.sourceforge.net Versions: From developer's website: "ImgSvr is a personal or corporate Embedded Picture Web Server that let's you efficiently browse digital pictures. Contrary to other gallery systems, imgsvr aimed to be an easy...
CVE-2007-3714
Directory traversal vulnerability in Ada Image Server ImgSvr 0.6.5 allows remote attackers to read arbitrary files via a .. dot dot in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE...
Directory traversal
Directory traversal vulnerability in Ada Image Server ImgSvr 0.6.5 allows remote attackers to read arbitrary files via a .. dot dot in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE...
CVE-2007-3714
Directory traversal vulnerability in Ada Image Server ImgSvr 0.6.5 allows remote attackers to read arbitrary files via a .. dot dot in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE...
CVE-2007-3714
CVE-2007-3714 is a directory-traversal vulnerability in Ada Image Server (ImgSvr). Wallet of details in connected sources shows that remote attackers could read arbitrary files via a .. sequence in the template parameter of the default URI, with affected versions including ImgSvr 0.6.5 and earlie...
CVE-2006-3546
Patrice Freydiere ImgSvr aka ADA Image Server allows remote attackers to cause a denial of service daemon crash via a long HTTP POST request. NOTE: this might be the same issue as CVE-2004-2463...
CVE-2006-3546
CVE-2006-3546 affects Patrice Freydiere ImgSvr (ADA Image Server). A remote attacker can cause a denial of service (daemon crash) by sending a long HTTP POST request. This entry notes a possible relation to CVE-2004-2463 but provides no additional exploit details beyond the POST-based DoS vector....
CVE-2004-2463
Buffer overflow in ADA Image Server ImgSvr 0.4 allows remote attackers to cause a denial of service web server crash or execute arbitrary code via a long GET request...
CVE-2004-2463
CVE-2004-2463 affects ADA Image Server (ImgSvr) 0.4. A buffer overflow in the server allows remote attackers to cause a web server crash (denial of service) or execute arbitrary code via a long GET request. The connected records corroborate the long-GET-triggered overflow as the root issue and th...
CVE-2004-2464
Directory traversal vulnerability in ADA Image Server ImgSvr 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences "%2e%2e%2f%2f". NOTE: it was later reported that 0.6.21 and earlier is also affected...
CVE-2004-2464
The CVE-2004-2464 entry concerns ADA Image Server (ImgSvr). Affected versions include 0.4 (and later notes indicate 0.6.21 and earlier are affected). The vulnerability is a directory traversal flaw in ImgSvr that allows remote attackers to read arbitrary files or list directories via hex-encoded ...