14 matches found
Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2026-1556)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
BB4 Big Brother Network Monitor 1.5 d2 bb-hist.sh HISTFILE Parameter File Existence Disclosure
No description provided by source. source : http://www.securityfocus.com/bid/1971/info Big Brother Network Monitor is a robust, feature rich network monitoring package produced by BB4 Technologies. A problem exists that can allow remote account guessing. The problem occurs in the Common Gateway...
IIS 1.0,Netscape Server 1.0/1.12,OReilly WebSite Professional 1.1 b BAT/.CMD Remote Command Execution
No description provided by source. IIS 1.0,Netscape Commerce Server 1.0/Communications Server 1.12,OReilly Software WebSite Professional 1.1 b BAT/.CMD Remote Command Execution source: http://www.securityfocus.com/bid/2023/info Some web servers that allow batch files to be executed via CGI are...
nginx+cgi to parse php is prone to a vulnerability-vulnerability warning-the black bar safety net
The title is a bit large, when we analyze carefully after, in fact, are generally configuration issues. If someone wants to attack the server, it will scan the machine where there is vulnerability can upload a malicious script file, the upload script is the first step, When a malicious php script...
CVE-2012-4443
Monkey HTTP Daemon 0.9.3 uses a real UID of root and a real GID of root during execution of CGI scripts, which might allow local users to gain privileges by leveraging cgi-bin write access...
PHP 5.3.x < 5.3.13 CGI Query String Code Execution
Binary data 6494.prm...
Microsoft Internet Information Server DoS
Request like http://www.example.com/vtibin/.dll/0 for virtual folders with CGI execution enabled causes server to crash and potentially leads to code execution...
Multiple vulnerabilities in Pico Server (pServ) v3.3
Multiple vulnerabilities in Pico Server pServ v3.3 discovered by Raphal Rigo Product: Pico Server pServ Affected Version: 3.3 verified, =3.3 probably too Not affected Version: 3.4 OS affected: all Risk: critical Remote Exploit: yes URL: http://pserv.sourceforge.net/ Overview ======== Pico Server ...
sh-httpd.txt
======================================== INetCop Security Advisory 2003-0x82-019 ======================================== Title: sh-httpd wildcard character' vulnerability 0x01. Description About: sh-httpd is a shell script-based Web server that supports GET and HEAD methods, and a CGI 1.1...
[Full-Disclosure] sh-httpd `wildcard character' vulnerability
======================================== INetCop Security Advisory 2003-0x82-019 ======================================== Title: sh-httpd wildcard character' vulnerability 0x01. Description About: sh-httpd is a shell script-based Web server that supports GET and HEAD methods, and a CGI 1.1...
EORF2003-04: sbox path disclosure problem
--------------------------- EightOne Research Facility --------------------------- EORF2003-04 security advisory Title: sbox has a information disclosure problems Author: Julio "e2fsck" Cesar Vendor: http://stein.cshl.org/WWW/software/sbox Versions: sbox 1.04 and later Date: 18 Sep 2003 1...
OpenVMS WASD multiple bugs
Weak default configuration, protection bypass, CGI execution in server's content...
CVE-2001-0135
The default installation of Ultraboard 2000 2.11 creates the Skins, Database, and Backups directories with world-writeable permissions, which could allow local users to modify sensitive information or possibly insert and execute CGI programs...
cobalt.cgiwrap.txt
There is a problem actually several with the "cgiwrap" program on Cobalt RaQ2 servers. It is supposed to run CGI programs as the proper user instead of "nobody" to make CGIs a little more secure. The Cobalt directory structure is as follows: /home/sites/site1/ - top level directory of the site...