33 matches found
CVE-1999-0509
Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote attackers to execute arbitrary commands...
EUVD-2000-1207
Malware in sbrugna...
EUVD-2006-5523
Malware in sbrugna...
EUVD-2000-0022
Malware in sbrugna...
EUVD-2001-1563
Malware in sbrugna...
Unauthorized Information Disclosure Vulnerability in AVTECH Devices
AVTECH, founded in 1996, is one of the world's leading CCTV manufacturers. The main products are surveillance equipment, network cameras, network video recorders and so on. An unauthorized information disclosure vulnerability exists in AVTECH devices. Due to the cgi-bin/ directory is not set with...
pserv 3.2 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13642/info pServ is prone to a directory traversal vulnerability. This occurs because the application does not implement a proper method for filtering directory traversal sequences from URIs. Since this can be done from t...
Rit Research Labs TinyWeb 1.9.2 Unauthorized Script Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10445/info TinyWeb Server is affected by an unauthorized script disclosure vulnerability. This issue is due to an input validation error that allows malicious users to bypass standard web server rules. This issue will all...
NaviCopa HTTP Server buffer overflow
Stack buffer overflow stack overrun on oversized request to cgi-bin directory. Script content leak with "." added to path...
CVE-2003-1510
TinyWeb 1.9 allows remote attackers to cause a denial of service CPU consumption via a ".%00." in an HTTP GET request to the cgi-bin directory...
Windows2000 under the administrator account really insecure-vulnerability warning-the black bar safety net
If you have an ordinary user account,there is a very simple method to get the NT Administrator account: One of: first c:\winnt\system32 under logon. the scr was renamed as logon. old backup Then put the usrmgr. exe renamed to logon. scr Then restart the logon. the scr is loaded at startup of the...
Teach you to retrieve Windows NT Admin rights on the method-vulnerability warning-the black bar safety net
One, by modifying the registry Those who have logged on NT the machine of the user, for example, IUSRmachine, have to HKEYLOCALMACHINE\SOFTWARE\MICROSOFT\WINDOWS\CurrentVersion\Run item Read and write permissions, the user can remotely access This item. For example, he can create a bat file, the...
CVE-2005-2849
Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to 1 read portions of source code via the -f option to Dig digdevice.cgi, 2 determine file existence via the -r argument to Tcpdump tcpdumpdevice.cgi or 3 modify files in the...
PServ 3.2 - Source Code Disclosure
source: https://www.securityfocus.com/bid/13638/info pServ is affected by a remote source code disclosure vulnerability. When handling a specially-crafted URI request, the application discloses the source code of scripts in the 'cgi-bin' directory. Information gathered through this attack could b...
Rit Research Labs TinyWeb 1.9.2 - Unauthorized Script Disclosure
Rit Research Labs TinyWeb 1.9.2 - Unauthorized Script Disclosure source: https://www.securityfocus.com/bid/10445/info TinyWeb Server is affected by an unauthorized script disclosure vulnerability. This issue is due to an input validation error that allows malicious users to bypass standard web...
CVE-2003-1510
TinyWeb 1.9 allows remote attackers to cause a denial of service CPU consumption via a ".%00." in an HTTP GET request to the cgi-bin directory...
SCSA012.txt
Security Corporation Security Advisory SCSA-012 PROGRAM: Sambar Server HOMEPAGE: http://www.sambar.com/ VULNERABLE VERSIONS: 5.3 and prior DESCRIPTION "Sambar Server is the new standard in high performance multi-functional servers with features rivaling other commercial products selling separatel...
Sambar Server 5.x - Information Disclosure
source: https://www.securityfocus.com/bid/7207/info An information disclosure vulnerability has been reported for Sambar Server. The vulnerability exists in some files existing in Sambar Server's cgi-bin directory. An attacker can exploit this vulnerability by making a request for these files. Th...
CVE-2002-0099
CVE-2002-0099 affects Michael Lamont Savant Web Server 3.0. A buffer overflow occurs when handling a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of dots, allowing remote attackers to cause a denial of service (crash). The available public refer...
Lotus Domino vulnerable to a denial of service via DOS device request
Overview The Lotus Domino Web Server contains a flaw that could be exploited to cause a denial-of-service situation on the Windows and OS/2 Platforms. Description With the Lotus Domino Web Server, you can access DOS-devices. If this is done through the cgi-bin directory, a ncgihttp.exe process wi...