26 matches found
EUVD-2004-2455
Malware in sbrugna...
EUVD-2007-3698
Malware in sbrugna...
EUVD-2004-2454
Malware in sbrugna...
Ada Image Server 0.6.6 SEH Overwrite
!/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image Server v0.6.6 SEH Overwrite...
Ada Image Server <= 0.6.7 imgsrv.exe Buffer Overflow
No description provided by source. !/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image...
Ada Image Server 0.6.7 - imgsrv.exe Remote Buffer Overflow
Ada Image Server 0.6.7 - imgsrv.exe Remote Buffer Overflow !/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py...
Ada Image Server <= 0.6.7 imgsrv.exe Buffer Overflow
Exploit for unknown platform in category remote exploits ==================================================== Ada Image Server 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image Server v0.6.6 SEH Overwrite Discovered/Exploited by Blake Tested on XP...
Ada Image Server 0.6.7 - 'imgsrv.exe' Remote Buffer Overflow
!/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image Server v0.6.6 SEH Overwrite...
Double directory traversal in ImgSvr 0.6.21
Luigi Auriemma Application: Ada Image server ImgSvr http://adaimgsvr.sourceforge.net Versions: = 0.6.21 and SVN = 28 Platforms: Windows and nix Bug: directory traversal Exploitation: remote Date: 24 Dec 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug ...
adaimage-traverse.txt
Luigi Auriemma Application: Ada Image server ImgSvr http://adaimgsvr.sourceforge.net Versions: From developer's website: "ImgSvr is a personal or corporate Embedded Picture Web Server that let's you efficiently browse digital pictures. Contrary to other gallery systems, imgsvr aimed to be an easy...
Directory traversal
Directory traversal vulnerability in Ada Image Server ImgSvr 0.6.5 allows remote attackers to read arbitrary files via a .. dot dot in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE...
CVE-2007-3714
Directory traversal vulnerability in Ada Image Server ImgSvr 0.6.5 allows remote attackers to read arbitrary files via a .. dot dot in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE...
CVE-2007-3714
Directory traversal vulnerability in Ada Image Server ImgSvr 0.6.5 allows remote attackers to read arbitrary files via a .. dot dot in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE...
CVE-2007-3714
CVE-2007-3714 is a directory-traversal vulnerability in Ada Image Server (ImgSvr). Wallet of details in connected sources shows that remote attackers could read arbitrary files via a .. sequence in the template parameter of the default URI, with affected versions including ImgSvr 0.6.5 and earlie...
CVE-2006-3546
Patrice Freydiere ImgSvr aka ADA Image Server allows remote attackers to cause a denial of service daemon crash via a long HTTP POST request. NOTE: this might be the same issue as CVE-2004-2463...
CVE-2006-3546
CVE-2006-3546 affects Patrice Freydiere ImgSvr (ADA Image Server). A remote attacker can cause a denial of service (daemon crash) by sending a long HTTP POST request. This entry notes a possible relation to CVE-2004-2463 but provides no additional exploit details beyond the POST-based DoS vector....
CVE-2004-2464
Directory traversal vulnerability in ADA Image Server ImgSvr 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences "%2e%2e%2f%2f". NOTE: it was later reported that 0.6.21 and earlier is also affected...
CVE-2004-2463
Buffer overflow in ADA Image Server ImgSvr 0.4 allows remote attackers to cause a denial of service web server crash or execute arbitrary code via a long GET request...
CVE-2004-2464
The CVE-2004-2464 entry concerns ADA Image Server (ImgSvr). Affected versions include 0.4 (and later notes indicate 0.6.21 and earlier are affected). The vulnerability is a directory traversal flaw in ImgSvr that allows remote attackers to read arbitrary files or list directories via hex-encoded ...
CVE-2004-2463
CVE-2004-2463 affects ADA Image Server (ImgSvr) 0.4. A buffer overflow in the server allows remote attackers to cause a web server crash (denial of service) or execute arbitrary code via a long GET request. The connected records corroborate the long-GET-triggered overflow as the root issue and th...