CVE-2006-1546

Apache Software Foundation ASF Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check...

CVE-2006-1393

Multiple cross-site scripting XSS vulnerabilities in the modpubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack...

CVE-2006-1393

CVE-2006-1393 describes multiple cross-site scripting (XSS) vulnerabilities in the University of Washington Pubcookie project, specifically the mod_pubcookie Apache module. Affected are Pubcookie 1.x and releases 3.0.0, 3.1.0, 3.1.1, and 3.2 before 3.2.1b, as well as 3.3 before 3.3.0a. The issues...

[SA19348] Pubcookie Cross-Site Scripting Vulnerabilities

TITLE: Pubcookie Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA19348 VERIFY ADVISORY: http://secunia.com/advisories/19348/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Pubcookie 3.x http://secunia.com/product/8916/ DESCRIPTION: Some vulnerabiliti...

HP-UX PHSS_34120 : HP-UX VirtualVault running Apache 1.3.X Remote Unauthorized Access (HPSBUX02101 SSRT051128 rev.1)

s700800 11.04 Virtualvault 4.6 OWS update : A security vulnerability has been identified in Apache HTTP server versions prior to Apache 1.3.34 that may allow HTTP Request Splitting/Spoofing attacks, resulting in remote unauthorized access. References: Apache HTTP Server version 1.3.34 announcemen...

HP-UX PHSS_34170 : HP-UX VirtualVault running Apache 1.3.X Remote Unauthorized Access (HPSBUX02101 SSRT051128 rev.1)

s700800 11.04 Virtualvault 4.6 IWS update : A security vulnerability has been identified in Apache HTTP server versions prior to Apache 1.3.34 that may allow HTTP Request Splitting/Spoofing attacks, resulting in remote unauthorized access. References: Apache HTTP Server version 1.3.34 announcemen...

HP-UX PHSS_34171 : HP-UX VirtualVault running Apache 1.3.X Remote Unauthorized Access (HPSBUX02101 SSRT051128 rev.1)

s700800 11.04 Virtualvault 4.5 IWS Update : A security vulnerability has been identified in Apache HTTP server versions prior to Apache 1.3.34 that may allow HTTP Request Splitting/Spoofing attacks, resulting in remote unauthorized access. References: Apache HTTP Server version 1.3.34 announcemen...

HP-UX PHSS_34169 : HP-UX VirtualVault running Apache 1.3.X Remote Unauthorized Access (HPSBUX02101 SSRT051128 rev.1)

s700800 11.04 Virtualvault 4.7 IWS update : A security vulnerability has been identified in Apache HTTP server versions prior to Apache 1.3.34 that may allow HTTP Request Splitting/Spoofing attacks, resulting in remote unauthorized access. References: Apache HTTP Server version 1.3.34 announcemen...

HP-UX PHSS_34119 : HP-UX VirtualVault running Apache 1.3.X Remote Unauthorized Access (HPSBUX02101 SSRT051128 rev.1)

s700800 11.04 Virtualvault 4.5 OWS update : A security vulnerability has been identified in Apache HTTP server versions prior to Apache 1.3.34 that may allow HTTP Request Splitting/Spoofing attacks, resulting in remote unauthorized access. References: Apache HTTP Server version 1.3.34 announcemen...

HP-UX PHSS_34123 : Apache-based Web Server on HP-UX mod_ssl, proxy_http, Remote Execution of Arbitrary Code, Denial of Service (DoS), and Unauthorized Access (HPSBUX02074 SSRT051251 rev.2)

s700800 11.04 Virtualvault 4.7 OWS Apache 2.x update : Potential security vulnerabilities have been identified with Apache running on HP-UX. These vulnerability could be exploited remotely to allow execution of arbitrary code, Denial of Service DoS, or unauthorized access. %NASLMINLEVEL 70300 C...

HP-UX PHSS_34163 : Apache-based Web Server on HP-UX mod_ssl, proxy_http, Remote Execution of Arbitrary Code, Denial of Service (DoS), and Unauthorized Access (HPSBUX02074 SSRT051251 rev.2)

s700800 11.04 Webproxy server 2.1 Apache 2.x update : Potential security vulnerabilities have been identified with Apache running on HP-UX. These vulnerability could be exploited remotely to allow execution of arbitrary code, Denial of Service DoS, or unauthorized access. %NASLMINLEVEL 70300 C...

HP-UX PHSS_34203 : HP-UX VirtualVault running Apache 1.3.X Remote Unauthorized Access (HPSBUX02101 SSRT051128 rev.1)

s700800 11.04 Webproxy 2.1 Apache 1.x update : A security vulnerability has been identified in Apache HTTP server versions prior to Apache 1.3.34 that may allow HTTP Request Splitting/Spoofing attacks, resulting in remote unauthorized access. References: Apache HTTP Server version 1.3.34...

Mac OS X Multiple Vulnerabilities (Security Update 2006-002)

The remote host is running Apple Mac OS X, but lacks Security Update 2006-002. This security update contains fixes for the following applications : apachemodphp CoreTypes LaunchServices Mail Safari rsync C Tenable Network Security, Inc. include"compat.inc"; if description scriptid21073;...

linux/x86 HTTP/1.x GET Downloads and JMP - 68 bytes+

No description provided by source. / linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+ This shellcode allows you to download a binary code straight off a standard HTTP server and execute it. The downloaded shellcode e.g. binary code will be executed on the stack. DEMONSTRATION: Starting by...

linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+

Exploit for linux/x86 platform in category shellcode ===================================================== linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+ ===================================================== / linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+ This shellcode allows you ...

CVE-2006-0743

CVE-2006-0743 affects Apache log4net 1.2.9 (LocalSyslogAppender) with a format string vulnerability that could cause a denial of service via memory corruption. The connected documents confirm the vulnerability in log4net 1.2.9 and describe DoS outcomes; some advisories note remediation by upgradi...

CVE-2006-1095

Directory traversal vulnerability in the FileSession object in Modpython module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie...

Directory traversal

Directory traversal vulnerability in the FileSession object in Modpython module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie...

CVE-2006-1095

Directory traversal vulnerability in the FileSession object in Modpython module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie...

CVE-2006-1095

Directory traversal vulnerability in the FileSession object in Modpython module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie...