Lucene search
+L

577 matches found

NVD
NVD
added 2005/05/02 4:0 a.m.17 views

CVE-2005-0864

The Boa web server, as used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products, allows remote attackers to read arbitrary files via a full pathname in the HTTP request...

5CVSS6.8AI score0.01531EPSS
Exploits1References3
Cvelist
Cvelist
added 2005/03/24 5:0 a.m.21 views

CVE-2005-0864

The Boa web server, as used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products, allows remote attackers to read arbitrary files via a full pathname in the HTTP request...

6.8AI score0.01531EPSS
Exploits1References3
CVE
CVE
added 2005/03/24 5:0 a.m.45 views

CVE-2005-0864

The CVE-2005-0864 entry concerns the Boa web server, used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products. The vulnerability allows remote attackers to read arbitrary files by supplying a full path in the HTTP request (path traversal). Reported impact is partial breach of confident...

5CVSS7.2AI score0.01531EPSS
Exploits1References3Affected Software1
Packet Storm
Packet Storm
added 2005/03/22 12:0 a.m.35 views

Exploit Labs Security Advisory 2005.2

------------------------------------------------------------ - EXPL-A-2005-002 exploitlabs.com Advisory 031 - ------------------------------------------------------------ - Samsung ADSL Modem - AFFECTED PRODUCTS ================= Samsung ADSL Modem Samgsung Eletronics http://www.samsung.com DETAI...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2005/03/22 12:0 a.m.42 views

BOA Web server directory traversal

Directory traversal by using ESC sequences /2E2E/ allows to access any system file...

4.1AI score
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.31 views

CVE-2000-0920

Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. dot dot attack in the GET HTTP request that uses a "%2E" instead of a "."...

6.6AI score0.08358EPSS
Exploits2References5
CVE
CVE
added 2001/01/22 5:0 a.m.105 views

CVE-2000-0920

Boa Web Server prior to 0.94.8.3 is affected by a directory traversal vulnerability (CVE-2000-0920) that lets remote attackers read arbitrary files by using a modified .. path with encoded dot characters (%2E) in GET requests. Root cause: improper handling of path traversal in Boa’s file access. ...

5CVSS6.6AI score0.08358EPSS
Exploits2References5Affected Software1
NVD
NVD
added 2000/12/19 5:0 a.m.25 views

CVE-2000-0920

Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. dot dot attack in the GET HTTP request that uses a "%2E" instead of a "."...

5CVSS6.6AI score0.08358EPSS
Exploits2References5
exploitpack
exploitpack
added 2000/12/19 12:0 a.m.14 views

BOA Web Server 0.94.8.2 - Arbitrary File Access

BOA Web Server 0.94.8.2 - Arbitrary File Access ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2000/12/19 12:0 a.m.33 views

BOA Web Server 0.94.8.2 - Arbitrary File Access

ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt Release: Public S 2 1 S E C http://www.s21sec.com...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/10/31 12:0 a.m.29 views

Ports Security Advisory: FreeBSD-SA-00:60.boa

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:60 Security Advisory FreeBSD, Inc. Topic: boa web server allows arbitrary file access/execution Category: ports Module: boa Announced: 2000-10-30 Credits: Lluis Mora...

0.5AI score
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2000/10/30 12:0 a.m.4 views

FreeBSD-SA-00:60.boa

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:60 Security Advisory FreeBSD, Inc. Topic: boa web server allows arbitrary file access/execution Category: ports Module: boa Announced: 2000-10-30 Credits: Lluis Mora...

6.2AI score
Exploits0
Packet Storm
Packet Storm
added 2000/10/10 12:0 a.m.24 views

boa.server.txt

ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt Release: Public S 2 1 S E C http://www.s21sec.com...

7.4AI score
Exploits0
Debian
Debian
added 2000/10/09 7:42 p.m.2 views

[SECURITY] New versions of Boa packages available

Package: boa Vulnerability: exposes contents of local files Debian-specific: no Vulnerable: yes In versions of boa before 0.94.8.3, it is possible to access files outside of the servers document root by the use of properly constructed URL requests. This problem is fixed in version 0.94.8.3-1,...

5.6AI score
Exploits0
Debian
Debian
added 2000/10/09 12:0 a.m.9 views

[SECURITY] New versions of Boa packages available

---------------------------------------------------------------------------- Debian Security Advisory [email protected] http://www.debian.org/security/ Daniel Jacobowitz October 9, 2000 - ---------------------------------------------------------------------------- Package: boa Vulnerability:...

2.8AI score
Exploits0
securityvulns
securityvulns
added 2000/10/09 12:0 a.m.54 views

Vulnerability in BOA web server v0.94.8.2

ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt Release: Public S 2 1 S E C http://www.s21sec.com...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2000/10/06 12:0 a.m.100 views

Boa Web Server Traversal Arbtirary File Access/Execution

The remote Boa Webserver allows an attacker to read arbitrary files on the remote web server by prefixing the pathname of the file with hex-encoded '../../' characters. This script was written by Thomas Reinke See the Nessus Scripts License for details Changes by Tenable: - Revised plugin title,...

5CVSS7.5AI score0.08358EPSS
Exploits2References2
Rows per page
Query Builder