18 matches found
EUVD-2002-1010
Malware in sbrugna...
EUVD-2002-1011
Malware in sbrugna...
EUVD-2002-1012
Malware in sbrugna...
Working Resources BadBlue Server 2.40 phptest.php Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9737/info It has been reported that BadBlue Server may be prone to a remote path disclosure vulnerability that may allow an attacker to disclose the installation path by issuing a request for 'phptest.php' script. BadBlue...
BadBlue ext.dll mfcisapicommand Parameter Remote Overflow
The remote host is running a version of BadBlue HTTP server that has a buffer overflow vulnerability in 'ext.dll', a module that handles HTTP requests. An unauthenticated, remote attacker can leverage this vulnerability by sending an HTTP request containing a 'mfcisapicommand' parameter with more...
BadBlue 2.55 Web Server Remote Buffer Overflow
Exploit for unknown platform in category remote exploits ============================================== BadBlue 2.55 Web Server Remote Buffer Overflow ============================================== / Badblue 2.55 Web Server remote buffer overflow Version: BadBlue Personal Edition v2.55 Date: Dec...
Working Resources BadBlue Server 2.40 - 'PHPtest.php' Full Path Disclosure
source: https://www.securityfocus.com/bid/9737/info It has been reported that BadBlue Server may be prone to a remote path disclosure vulnerability that may allow an attacker to disclose the installation path by issuing a request for 'phptest.php' script. BadBlue version 2.4 has been reported to ...
Working Resources BadBlue Server 2.40 - PHPtest.php Full Path Disclosure
Working Resources BadBlue Server 2.40 - PHPtest.php Full Path Disclosure source: https://www.securityfocus.com/bid/9737/info It has been reported that BadBlue Server may be prone to a remote path disclosure vulnerability that may allow an attacker to disclose the installation path by issuing a...
BadBlue ISAPI Extension .hts Crafted File Extension Request Authentication Bypass
The remote host is running the BadBlue web server earlier than 2.2. Such versions are reportedly affected by an authentication bypass vulnerability. It is possible for an attacker to gain administrative access using a filename with a .ats extension instead of a .hts extension. C Tenable Network...
CVE-2002-1022
BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges...
CVE-2002-1023
BadBlue server allows remote attackers to cause a denial of service crash via an HTTP GET request without a URI...
CVE-2002-1023
BadBlue server allows remote attackers to cause a denial of service crash via an HTTP GET request without a URI...
CVE-2002-1022
BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges...
CVE-2002-1021
BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte...
CVE-2002-1021
Summary of CVE-2002-1021 (BadBlue Hex-encoded Null Byte) The vulnerability affects the BadBlue web server and allows remote attackers to read restricted files (notably EXT.INI, the BadBlue configuration file) by sending an HTTP request containing a hex-encoded NULL byte. This constitutes an infor...
CVE-2002-1022
CVE-2002-1022 affects BadBlue server. The vulnerability arises because passwords are stored in plaintext in the ext.ini file, enabling local and possibly remote attackers to escalate privileges. The connected documents corroborate the plaintext storage and the potential privilege gain, but do not...
CVE-2002-0325
Directory traversal vulnerability in BadBlue before 1.6.1 allows remote attackers to read arbitrary files via a ... modified dot dot in the URL...
CVE-2001-0276
ext.dll in BadBlue 1.02.07 Personal Edition web server allows remote attackers to determine the physical path of the server by directly calling ext.dll without any arguments, which produces an error message that contains the path...