341 matches found
CVE-1999-0146
The CVE-1999-0146 entry refers to the campas CGI program shipped with some NCSA httpd servers. The root cause is improper sanitization of user input in the campas CGI, enabling an attacker to execute arbitrary commands via encoded carriage return characters in the query string, demonstrated by re...
CVE-1999-0264
htmlscript CGI program allows remote read access to files...
CVE-1999-0174
Consolidated: CVE-1999-0174 is a traversal flaw in the view_source CGI that allows remote attackers to read arbitrary files via a .. sequence. Affected component: the view_source CGI program; root cause: directory traversal; impact: partial confidentiality. No patch/version details are provided i...
NCSA 1.31.4.x1.5 Apache HTTPd 0.8.110.8.14 - ScriptAlias Source Retrieval
NCSA 1.31.4.x1.5 Apache HTTPd 0.8.110.8.14 - ScriptAlias Source Retrieval source: https://www.securityfocus.com/bid/2300/info NSCA httpd prior to and including 1.5 and Apache Web Server prior to 1.0 contain a bug in the ScriptAlias function that allows remote users to view the source of CGI...
NCSA 1.3/1.4.x/1.5 / Apache HTTPd 0.8.11/0.8.14 - ScriptAlias Source Retrieval
source: https://www.securityfocus.com/bid/2300/info NSCA httpd prior to and including 1.5 and Apache Web Server prior to 1.0 contain a bug in the ScriptAlias function that allows remote users to view the source of CGI programs on the web server, if a ScriptAlias directory is defined under...
CdomainFree 2.4 - Remote Command Execution
CdomainFree 2.4 - Remote Command Execution source: https://www.securityfocus.com/bid/304/info A vulnerability in a CGI program part of CdomainFree allows remote malicious users to run any executable already existing to the machine. The vulnerability is in the whoisraw.cgi program. This CGI passes...
CdomainFree 2.4 - Remote Command Execution
source: https://www.securityfocus.com/bid/304/info A vulnerability in a CGI program part of CdomainFree allows remote malicious users to run any executable already existing to the machine. The vulnerability is in the whoisraw.cgi program. This CGI passes user input to the shell without proper...
CVE-1999-0287
Vulnerability in the Wguest CGI program...
PT-1999-1032 · Wguest · Wguest
Name of the Vulnerable Software and Affected Versions: Wguest affected versions not specified Description: A vulnerability exists in the Wguest CGI program. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...
CVE-1999-0606
An incorrect configuration of the EZMall 2000 shopping cart CGI program "mall2000.cgi" could disclose private information...
CVE-1999-1381
Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary commands...
CVE-1999-1070
Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to cause a denial of service via a long query parameter...
CVE-1999-0021
Arbitrary command execution via buffer overflow in Count.cgi wwwcount cgi-bin program...
Muhammad A. Muquit wwwcount 2.3 - 'Count.cgi' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/128/info Wwwcount count.cgi is a very popular CGI program used to track website usage. In particular, it enumerates the number of hits on given webpages and increments them on a 'counter'. In October of 1997 two remotely exploitable problems were...
CVE-1999-0148
The handler CGI program in IRIX allows arbitrary command execution...
CVE-1999-0237
Remote execution of arbitrary commands through Guestbook CGI program...
CVE-1999-0149
The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. dot dot attack...
CVE-1999-0173
FormMail CGI program can be used by web servers other than the host server that the program resides on...
CVE-1999-0260
The jj CGI program allows command execution via shell metacharacters...
CVE-1999-0070
test-cgi program allows an attacker to list files on the server...