CVE-2007-5000

Cross-site scripting XSS vulnerability in the 1 modimap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the 2 modimagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

SuSE 10 Security Update : PHP5 (ZYPP Patch Number 2102)

the CURL module lacked checks for control characters CVE-2006-2563 - strrepeat contained an integer overflow - ext/wddx contained a buffer overflow - memorylimit lacked checks for integer overflows - a bug in sscanf could potentially be exploited to execute arbitrary code. CVE-2006-4020 - an...

Apache Httpd < 2.2.8 : mod_proxy_balancer XSS

A flaw was found in the modproxybalancer module. On sites where modproxybalancer is enabled, a cross-site scripting attack against an authorized user is possible...

FTP Admin多个远程输入验证漏洞

BUGTRAQ ID: 26658 FTP Admin是结合vsFTPd、sudo、apache和PHP使用的用户管理工具。 FTP Admin的实现上存在多个输入验证漏洞，远程攻击者可能利用此漏洞获取非授权访问。 FTP Admin的index.php文件中没有正确地验证对page参数的输入，允许远程攻击者包含本地或外部FTP资源的任意文件。成功攻击要求有效的用户凭据。 index.php文件中没有正确地验证认证，远程攻击者无需拥有有效的用户凭据便可以通过将loggedin参数设置为true登录并添加新的FTP用户。成功攻击要求打开了registerglobals。...

Mandrake Linux Security Advisory : apache (MDKSA-2007:235)

A flaw in the Apache modproxy module was found that could potentially lead to a denial of service is using a threaded Multi-Processing Module. On sites where a reverse proxy is configured, a remote attacker could send a special reequest that would cause the Apache child process handling the reque...

HP-UX PHSS_37141 : s700_800 11.X OV NNM6.4x/ET2.0x Intermediate Patch 17

s700800 11.X OV NNM6.4x/ET2.0x Intermediate Patch 17 : The remote HP-UX host is affected by multiple vulnerabilities : - Potential vulnerabilities have been identified with HP OpenView Network Node Manager OV NNM running Apache. These vulnerabilities could be exploited remotely resulting in cross...

CVE-2007-6203

Apache HTTP Server 2.0.x and 2.2.x are affected by CVE-2007-6203, where the HTTP Method header is not sanitized when reflected in a 413 Response, enabling cross-site scripting-like attacks via headers sent by the client. The root cause is lack of sanitization of the Method specifier header in suc...

CVE-2007-6203

Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting XSS style attacks using web client components that can send arbitrary...

QuickTime RTSP Response Content-type remote stack rewrite exploit

Everyone Loves O|0+|O the Hypnotoad... |...| | | =o0O=====O0o=============================== | QuickTime RTSP Response Content-type | | remote stack rewrite exploit for IE 6/7 | | by Yag Kohha skyhole at gmail.com | =========================================== Exploit tested on: - Windows Vista -...

ProCheckUp Security Advisory 2007.37

PR07-37: XSS on Apache HTTP Server 413 error pages via malformed HTTP method Vulnerability found: 7 November 2007 Vendor contacted: 14 November 2007 Risk factor: N/A The reason why we didn't consider this vulnerability a security risk is because the attacker needs to force the victim's browser to...

Apache 2.2.4 - 413 Error HTTP Request Method Cross-Site Scripting

Apache 2.2.4 - 413 Error HTTP Request Method Cross-Site Scripting source: https://www.securityfocus.com/bid/26663/info Apache is prone to a cross-site scripting weakness when handling HTTP request methods that result in 413 HTTP errors. An attacker may exploit this issue to steal cookie-based...

Apache 2.2.4 - 413 Error HTTP Request Method Cross-Site Scripting

source: https://www.securityfocus.com/bid/26663/info Apache is prone to a cross-site scripting weakness when handling HTTP request methods that result in 413 HTTP errors. An attacker may exploit this issue to steal cookie-based authentication credentials and launch other attacks. Apache 2.0.46...

Apple QuickTime 7.27.3 - RSTP Response Universal

Apple QuickTime 7.27.3 - RSTP Response Universal Everyone Loves O|0+|O the Hypnotoad... |...| | | =o0O=====O0o=============================== | QuickTime RTSP Response Content-type | | remote stack rewrite exploit for IE 6/7 | | by Yag Kohha skyhole at gmail.com |...

Apple QuickTime 7.2/7.3 RSTP Response Universal Exploit (cool)

Exploit for unknown platform in category remote exploits ============================================================== Apple QuickTime 7.2/7.3 RSTP Response Universal Exploit cool ============================================================== Everyone Loves O|0+|O the Hypnotoad... |...| | |...

Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2

Hi On Tue, 2007-11-20 at 00:51 +0200, Kapetanakis Giannis wrote: ps. I've just discovered this: http://www.g-loaded.eu/2007/08/10/ssl-enabled-name-based-apache-virtual-hosts-with-modgnutls/ rfc3546 defines Server Name Indication SNI extention which is used by modgnutls for tls name based virtual...

[slackware-security] php

New PHP5 packages are available for Slackware 10.1, 10.2, 11.0, 12.0, and -current to fix security and other bugs. Note that PHP5 was not officially supported in Slackware 10.1 or 10.2 being in the /testing directory, and was not the default version of PHP for Slackware 11.0 being in the /extra...

GLSA-200711-06 : Apache: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200711-06 Apache: Multiple vulnerabilities Multiple cross-site scripting vulnerabilities have been discovered in modstatus and modautoindex CVE-2006-5752, CVE-2007-4465. An error has been discovered in the recallheaders function i...

Authentication flaw

SQLLoginModule in Apache Geronimo 2.0 through 2.1 does not throw an exception for a nonexistent username, which allows remote attackers to bypass authentication via a login attempt with any username not contained in the database...

CVE-2007-5797

SQLLoginModule in Apache Geronimo 2.0 through 2.1 does not throw an exception for a nonexistent username, which allows remote attackers to bypass authentication via a login attempt with any username not contained in the database...

miniBB BB_FUNC_SEARCH.PHP SQL注入漏洞

miniBB是一款基于PHP的WEB应用程序。 miniBB不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行SQL攻击，获得敏感信息或操作数据库。 问题是由于'BBFUNCSEARCH.PHP'脚本对用户提交的'table'参数缺少过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，攻击者可以获得敏感信息或操作数据库。 MiniBB MiniBB 2.1 - Apache Software Foundation Apache 1.3.24 - Apache Software Foundation Apache 1.3.23 - Apache Software...