EUVD-2007-2968

Malware in sbrugna...

Centrinity FirstClass Desktop Client 7.1 - Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10074/info It has been reported that FirstClass Desktop Client may be prone to a local buffer overflow vulnerability that could allow attackers to execute arbitrary code on a vulnerable system that may lead to elevated...

Centrinity FirstClass 7.1 HTTP Server Directory Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8920/info It has been reported that Centrinity FirstClass HTTP server may be prone to an information disclosure vulnerability that may allow a remote attacker to disclose listings for server root and user web directories ...

Centrinity FirstClass 5.77 0 Intranet Server Long Header Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1421/info If an E-mail containing an excessively long To: field in the header 1.5 MB is processed by First Class Intranet Services FCIS, a Denial of Service can occur. http://www.exploit-db.com/sploits/20052.tar.gz...

Centrinity FirstClass 5.50/5.77/7.0/7.1 - HTTP Server Long Version Field Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8793/info A problem has been reported in the handling of overly long HTTP version string data by Centrinity FirstClass. Because of this, it may be possible for an attacker deny service to legitimate users of a vulnerable...

Centrinity FirstClass HTTP Server 5/7 TargetName Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9950/info It has been reported that FirstClass HTTP Server may be prone to a cross-site scripting vulnerability that may allow a remote attacker to execute arbitrary HTML or script code in a user's browser. The issue...

CVE-2007-2976

Centrinity FirstClass 8.3 and earlier, and Server and Internet Services 8.0 and earlier, do not properly handle a URL with a null "%00" character, which allows remote attackers to conduct cross-site scripting XSS attacks. NOTE: the provenance of this information is unknown; the details are obtain...

Cross site scripting

Centrinity FirstClass 8.3 and earlier, and Server and Internet Services 8.0 and earlier, do not properly handle a URL with a null "%00" character, which allows remote attackers to conduct cross-site scripting XSS attacks. NOTE: the provenance of this information is unknown; the details are obtain...

CVE-2007-2976

Centrinity FirstClass 8.3 and earlier, and Server and Internet Services 8.0 and earlier, do not properly handle a URL with a null "%00" character, which allows remote attackers to conduct cross-site scripting XSS attacks. NOTE: the provenance of this information is unknown; the details are obtain...

CVE-2003-1173

Centrinity FirstClass 7.1 allows remote attackers to access sensitive information by appending search to the end of the URL and checking all of the search option checkboxes and leaving the text field blank, which will return all files in the searched directory...

CVE-2003-1173

CVE-2003-1173 affects Centrinity FirstClass 7.1. The vulnerability allows a remote attacker to access sensitive information by manipulating the URL: append a search, check all search option checkboxes, and leave the text field blank, which returns all files in the targeted directory. The provided...

Centrinity FirstClass Desktop Client 7.1 - Local Buffer Overflow

Centrinity FirstClass Desktop Client 7.1 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/10074/info It has been reported that FirstClass Desktop Client may be prone to a local buffer overflow vulnerability that could allow attackers to execute arbitrary code on a vulnerable...

Centrinity FirstClass Desktop Client 7.1 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/10074/info It has been reported that FirstClass Desktop Client may be prone to a local buffer overflow vulnerability that could allow attackers to execute arbitrary code on a vulnerable system that may lead to elevated privileges. The issue is reported...

Centrinity FirstClass HTTP Server Cross Site Scripting

Product: FirstClass HTTP Server Developer: Centrinity URL: http://www.centrinity.com Description: Injected code is rendered in the context of the vulnerable page. Exploit: http://TARGET/.Templates/Commands/Upload.shtml?TargetName=scriptalert'XSS'/script It may be possible to steal cookies from...

Centrinity FirstClass HTTP Server 57 - TargetName Cross-Site Scripting

Centrinity FirstClass HTTP Server 57 - TargetName Cross-Site Scripting source: https://www.securityfocus.com/bid/9950/info It has been reported that FirstClass HTTP Server may be prone to a cross-site scripting vulnerability that may allow a remote attacker to execute arbitrary HTML or script cod...

Centrinity FirstClass HTTP Server 5/7 - 'TargetName' Cross-Site Scripting

source: https://www.securityfocus.com/bid/9950/info It has been reported that FirstClass HTTP Server may be prone to a cross-site scripting vulnerability that may allow a remote attacker to execute arbitrary HTML or script code in a user's browser. The issue presents itself due to insufficient...

CVE-2003-1173

Centrinity FirstClass 7.1 allows remote attackers to access sensitive information by appending search to the end of the URL and checking all of the search option checkboxes and leaving the text field blank, which will return all files in the searched directory...

Centrinity FirstClass HTTP Server 7.1 - Directory Disclosure

Centrinity FirstClass HTTP Server 7.1 - Directory Disclosure source: https://www.securityfocus.com/bid/8920/info It has been reported that Centrinity FirstClass HTTP server may be prone to an information disclosure vulnerability that may allow a remote attacker to disclose listings for server roo...

Centrinity FirstClass HTTP Server 7.1 - Directory Disclosure

source: https://www.securityfocus.com/bid/8920/info It has been reported that Centrinity FirstClass HTTP server may be prone to an information disclosure vulnerability that may allow a remote attacker to disclose listings for server root and user web directories on a vulnerable system. This issue...

Centrinity FirstClass HTTP Server 5.505.777.07.1 - Long Version Field Denial of Service

Centrinity FirstClass HTTP Server 5.505.777.07.1 - Long Version Field Denial of Service // source: https://www.securityfocus.com/bid/8793/info A problem has been reported in the handling of overly long HTTP version string data by Centrinity FirstClass. Because of this, it may be possible for an...