EUVD-2002-1434

Malware in sbrugna...

EUVD-2006-1487

Malware in sbrugna...

Blazix 1.2 Special Character Handling Server Side Script Information Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/5566/info Blazix is a freely available, open source web server written in Java. It is available for Linux and Microsoft Windows operating systems. When a user passes a request to the web server that ends in either a plus ...

Blazix 1.2 Password Protected Directory Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5567/info Blazix is a freely available, open source web server written in Java. It is available for Linux and Microsoft Windows operating systems. Blazix does not properly handle some special characters when appended to...

CVE-2006-1483

Blazix Web Server before 1.2.6, when running on Windows, allows remote attackers to obtain the source code of JSP files via 1 . dot, 2 space, and 3 slash characters in the extension of a URL...

Code injection

Blazix Web Server before 1.2.6, when running on Windows, allows remote attackers to obtain the source code of JSP files via 1 . dot, 2 space, and 3 slash characters in the extension of a URL...

CVE-2006-1483

Blazix Web Server before 1.2.6, when running on Windows, allows remote attackers to obtain the source code of JSP files via 1 . dot, 2 space, and 3 slash characters in the extension of a URL...

CVE-2006-1483

CVE-2006-1483 affects Blazix Web Server (Windows) prior to version 1.2.6. The vulnerability allows remote attackers to obtain the source code of JSP files by crafting URL extensions containing a dot, space, or slash. The description in the connected records confirms the affected component and the...

[SA19341] Blazix Web Server JSP Source Code Disclosure Vulnerability

TITLE: Blazix Web Server JSP Source Code Disclosure Vulnerability SECUNIA ADVISORY ID: SA19341 VERIFY ADVISORY: http://secunia.com/advisories/19341/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Blazix 1.x http://secunia.com/product/8961/...

Blazix Trailing Character JSP Source Disclosure

The remote host is running the Blazix web server, a web server written in Java. The installed version of Blazix discloses the source code of its JSP pages by requesting the pages while appending a plus sign or a backslash to its name. An attacker may use this flaw to get the source code of your...

CVE-2002-1451

The vulnerability CVE-2002-1451 affects the Blazix web server (Java-based) prior to version 1.2.2. An HTTP request that ends with a "+" or a backslash "\" can disclose the JSP source code or list restricted directories, enabling partial disclosure of sensitive data. The threat is described as rem...

CVE-2002-1451

Blazix before 1.2.2 allows remote attackers to read source code of JSP scripts or list restricted web directories via an HTTP request that ends in a 1 "+" or 2 "" backslash character...

Blazix 1.2 - Password Protected Directory Information Disclosure

Blazix 1.2 - Password Protected Directory Information Disclosure source: https://www.securityfocus.com/bid/5567/info Blazix is a freely available, open source web server written in Java. It is available for Linux and Microsoft Windows operating systems. Blazix does not properly handle some specia...

Blazix 1.2 jsp view and free protected folder access

Auriemma Luigi, PivX security advisory Application: Blazix http://www.blazix.com Version: 1.2 and previous Bug: Bad management of files requested with at the end some "bad" characters Risk low: An attacker can view jsp and other server side scripts with the ability to access any password protecte...

Blazix 1.2 - Password Protected Directory Information Disclosure

source: https://www.securityfocus.com/bid/5567/info Blazix is a freely available, open source web server written in Java. It is available for Linux and Microsoft Windows operating systems. Blazix does not properly handle some special characters when appended to requests. By passing a special...

CVE-2002-1451

Blazix before 1.2.2 allows remote attackers to read source code of JSP scripts or list restricted web directories via an HTTP request that ends in a 1 "+" or 2 "" backslash character...

Blazix 1.2 - Special Character Handling Server Side Script Information Disclosure

source: https://www.securityfocus.com/bid/5566/info Blazix is a freely available, open source web server written in Java. It is available for Linux and Microsoft Windows operating systems. When a user passes a request to the web server that ends in either a plus + or backslash , the web server ma...

Blazix 1.2 - Special Character Handling Server Side Script Information Disclosure

Blazix 1.2 - Special Character Handling Server Side Script Information Disclosure source: https://www.securityfocus.com/bid/5566/info Blazix is a freely available, open source web server written in Java. It is available for Linux and Microsoft Windows operating systems. When a user passes a reque...