110 matches found
Netcomm NB1300 ModemRouter - Remote Denial of Service
Netcomm NB1300 ModemRouter - Remote Denial of Service source: https://www.securityfocus.com/bid/12901/info Netcomm NB1300 Modem/Router is reported prone to a remote denial of service vulnerability. An attacker can exploit this condition by sending a large amount of ping requests to the device. A...
CoolForum 0.5/0.7/0.8 - 'avatar.php?img' Cross-Site Scripting
source: https://www.securityfocus.com/bid/12852/info Multiple remote input validation vulnerabilities affect CoolForum. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical functionality. Multiple SQL injection...
PAFileDB 1.1.32.1.13.03.1 - viewall.php?start Cross-Site Scripting
PAFileDB 1.1.32.1.13.03.1 - viewall.php?start Cross-Site Scripting source: https://www.securityfocus.com/bid/12788/info Multiple SQL injection and cross-site scripting vulnerabilities exist in paFileDB. These issues are reported to exist in the 'viewall.php' and 'category.php' scripts. Exploitati...
CVE-2004-0526
Unknown versions of Internet Explorer and Outlook allow remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing"...
Netegrity IdentityMinder Web Edition 5.6 - Null Byte Cross-Site Scripting
source: https://www.securityfocus.com/bid/10645/info Netegrity IdentityMinder is a tool designed for the Microsoft Windows platform to manage and maintain users and user accounts. The tool supports a web based interface for creating and removing users in multi-user environments. It has been...
DeleGate 7.8.x/8.x - SSLway Filter Remote Stack Buffer Overflow (PoC)
source: https://www.securityfocus.com/bid/10295/info A remote buffer overflow vulnerability has been reported to affect the DeleGate SSLway filter. This filter is employed when DeleGate is applying SSL to arbitrary protocols. The issue presents itself due to a lack of sufficient boundary checks...
BEA WebLogic 678 - InteractiveQuery.jsp Cross-Site Scripting
BEA WebLogic 678 - InteractiveQuery.jsp Cross-Site Scripting source: https://www.securityfocus.com/bid/8938/info It has been reported that BEA WebLogic InteractiveQuery.jsp example application is prone to a cross-site scripting vulnerability. The issue is reported to exist due insufficient...
Microsoft Security Bulletin MS03-028: Flaw in ISA Server Error Pages Could Allow Cross-Site Scripting Attack (Q816456)
-----BEGIN PGP SIGNED MESSAGE----- - - --------------------------------------------------------------- Title: Flaw in ISA Server Error Pages Could Allow Cross-Site Scripting Attack 816456 Date: 16 July 2003 Software: Microsoftr ISA Server Max Risk: Important Bulletin: MS03-028 Microsoft encourage...
ProductCart 1.51.62.0 - MSG.asp Cross-Site Scripting
ProductCart 1.51.62.0 - MSG.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/8108/info A cross-site scripting vulnerability has been reported for ProductCart. The vulnerability exists due to insufficient sanitization of some user-supplied values. Exploitation could permit an...
MailEnable 1.501x - Email Server Buffer Overflow
MailEnable 1.501x - Email Server Buffer Overflow // source: https://www.securityfocus.com/bid/6197/info A buffer overflow vulnerability has been reported for MailEnable's POP3 server. The vulnerability is due to insufficent bounds checking of the USER login field. An attacker can exploit this...