19 matches found
EUVD-2015-8102
Malware in sbrugna...
EUVD-2014-4914
Malware in sbrugna...
Debian: Security Advisory (DLA-490-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-8212
CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows remote attackers to execute arbitrary code via crafted arguments, which are handled by a non-CGI aware program...
CVE-2015-8212
CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows remote attackers to execute arbitrary code via crafted arguments, which are handled by a non-CGI aware program...
UBUNTU-CVE-2015-8212
CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows remote attackers to execute arbitrary code via crafted arguments, which are handled by a non-CGI aware program...
CVE-2015-8212
CVE-2015-8212 affects bozohttpd (NetBSD: 6.0.x up to 6.0.6, 6.1.x up to 6.1.5, 7.0). The flaw is in the CGI suffix handler when the -C option is used, allowing crafted arguments to be processed by a non-CGI aware program and enabling remote code execution. Severity/impact cited across sources ali...
CVE-2015-8212
CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows remote attackers to execute arbitrary code via crafted arguments, which are handled by a non-CGI aware program...
[SECURITY] [DLA 490-1] bozohttpd security update
Package : bozohttpd Version : 20111118-1+deb7u1 CVE ID : CVE-2014-5015 CVE-2015-8212 Debian Bug : 755197 Two security vulnerabilities have been discovered in bozohttpd, a small HTTP server. CVE-2014-5015 Bozotic HTTP server aka bozohttpd before 201407081 truncates paths when checking .htpasswd...
DLA-490-1 bozohttpd - security update
Bulletin has no description...
Debian DLA-490-1 : bozohttpd security update
Two security vulnerabilities have been discovered in bozohttpd, a small HTTP server. CVE-2014-5015 Bozotic HTTP server aka bozohttpd before 201407081 truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restriction...
NetBSD bozohttpd CGI Processor Arbitrary Code Execution Vulnerability
NetBSD is a free and open source Unix-like operating system. A security vulnerability in NetBSD's bozohttpd CGI processor allows remote attackers to submit special requests to execute arbitrary code...
Design/Logic Flaw
bozotic HTTP server aka bozohttpd before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path...
UBUNTU-CVE-2014-5015
bozotic HTTP server aka bozohttpd before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path...
CVE-2014-5015
bozotic HTTP server aka bozohttpd before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path...
bozohttpd Security Bypass Vulnerability
bozohttpd is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and gain access to restricted content. This can lead to other attacks. bozohttpd 20090522 and 20100509 are vulnerable; other versions may also be affected. OpenVAS...
bozohttpd Security Bypass Vulnerability
bozohttpd is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:eterna:bozohttpd";...
CVE-2010-2195
bozotic HTTP server aka bozohttpd 20090522 through 20100512 allows attackers to cause a denial of service via vectors related to a "wrong code generation interaction with GCC."...
CVE-2010-2320
CVE-2010-2320 affects bozotic HTTP server (bozohttpd). The OpenVAS entries describe an information disclosure vulnerability and a security bypass that lets remote attackers list home-directory contents and infer user accounts by requesting URIs beginning with /~. The NVD description confirms the ...