577 matches found
CVE-2005-0864
The Boa web server, as used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products, allows remote attackers to read arbitrary files via a full pathname in the HTTP request...
CVE-2005-0864
The Boa web server, as used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products, allows remote attackers to read arbitrary files via a full pathname in the HTTP request...
CVE-2005-0864
The CVE-2005-0864 entry concerns the Boa web server, used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products. The vulnerability allows remote attackers to read arbitrary files by supplying a full path in the HTTP request (path traversal). Reported impact is partial breach of confident...
Exploit Labs Security Advisory 2005.2
------------------------------------------------------------ - EXPL-A-2005-002 exploitlabs.com Advisory 031 - ------------------------------------------------------------ - Samsung ADSL Modem - AFFECTED PRODUCTS ================= Samsung ADSL Modem Samgsung Eletronics http://www.samsung.com DETAI...
BOA Web server directory traversal
Directory traversal by using ESC sequences /2E2E/ allows to access any system file...
CVE-2000-0920
Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. dot dot attack in the GET HTTP request that uses a "%2E" instead of a "."...
CVE-2000-0920
Boa Web Server prior to 0.94.8.3 is affected by a directory traversal vulnerability (CVE-2000-0920) that lets remote attackers read arbitrary files by using a modified .. path with encoded dot characters (%2E) in GET requests. Root cause: improper handling of path traversal in Boa’s file access. ...
CVE-2000-0920
Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. dot dot attack in the GET HTTP request that uses a "%2E" instead of a "."...
BOA Web Server 0.94.8.2 - Arbitrary File Access
BOA Web Server 0.94.8.2 - Arbitrary File Access ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt...
BOA Web Server 0.94.8.2 - Arbitrary File Access
ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt Release: Public S 2 1 S E C http://www.s21sec.com...
Ports Security Advisory: FreeBSD-SA-00:60.boa
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:60 Security Advisory FreeBSD, Inc. Topic: boa web server allows arbitrary file access/execution Category: ports Module: boa Announced: 2000-10-30 Credits: Lluis Mora...
FreeBSD-SA-00:60.boa
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:60 Security Advisory FreeBSD, Inc. Topic: boa web server allows arbitrary file access/execution Category: ports Module: boa Announced: 2000-10-30 Credits: Lluis Mora...
boa.server.txt
ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt Release: Public S 2 1 S E C http://www.s21sec.com...
[SECURITY] New versions of Boa packages available
Package: boa Vulnerability: exposes contents of local files Debian-specific: no Vulnerable: yes In versions of boa before 0.94.8.3, it is possible to access files outside of the servers document root by the use of properly constructed URL requests. This problem is fixed in version 0.94.8.3-1,...
[SECURITY] New versions of Boa packages available
---------------------------------------------------------------------------- Debian Security Advisory [email protected] http://www.debian.org/security/ Daniel Jacobowitz October 9, 2000 - ---------------------------------------------------------------------------- Package: boa Vulnerability:...
Vulnerability in BOA web server v0.94.8.2
ID: S21SEC-005-en Title: Vulnerability in BOA web server v0.94.8.2 Date: 03/10/2000 Status: Vendor contacted, patch available Scope: Arbitrary file access Platforms: Unix Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-005-en.txt Release: Public S 2 1 S E C http://www.s21sec.com...
Boa Web Server Traversal Arbtirary File Access/Execution
The remote Boa Webserver allows an attacker to read arbitrary files on the remote web server by prefixing the pathname of the file with hex-encoded '../../' characters. This script was written by Thomas Reinke See the Nessus Scripts License for details Changes by Tenable: - Revised plugin title,...