33 matches found
Дырка в AnalogX Simple Server
Запрос к длинному имени файла в каталоге cgi-bin приводит к краху сервера...
CVE-2000-0473
Buffer overflow in AnalogX SimpleServer 1.05 allows a remote attacker to cause a denial of service via a long GET request for a program in the cgi-bin directory...
CVE-2000-0473
Buffer overflow in AnalogX SimpleServer 1.05 allows a remote attacker to cause a denial of service via a long GET request for a program in the cgi-bin directory...
CVE-2000-0022
Technical details about CVE-2000-0022 are not publicly provided in the supplied documents. Monitor for updates from referenced sources; only the basic description about Lotus Domino CGI-bin anonymous access is available.
CVE-2000-0022
Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory...
sambar.bat.txt
PRODUCT ------- The Sambar Server is a multi-threaded HTTP, FTP and Proxy server for Windows NT and Windows 95. AFFECTED VERSIONS ----------------- All version of Sambar server running under Windows NT 4.0 and Windows 2000. Windows 98 version is vulnerable. VULNERABILITY DESCRIPTION...
Sambar Server Multiple Script Arbitrary Code Execution
At least one of these CGI scripts is installed : hello.bat echo.bat They allow any attacker to execute commands with the privileges of the web server process. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid10246;...
CVE-2000-0022
Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory...
IBM Lotus Domino HTTP Server Filesystem Setup Disclosure
It is possible to get the absolute path leading to the remote /cgi-bin directory by requesting a bogus cgi. This issue can be used to obtain OS and installation details. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
CVE-1999-0854
Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file...
omnihttpd.webserver.txt
Date: Sat, 5 Jun 1999 09:53:51 +0300 From: Valentin Perelogin To: [email protected] Subject: Remote Exploit Bug in OmniHTTPd Web Server Hi all, The exploit bug will make temp files on the server until servers hdd is full. And anyone can do it remotely. By default visadmin.exe Visitor...
Web Server /cgi-bin Shell Access
The remote web server has one of these shells installed in /cgi-bin : ash, bash, csh, ksh, sh, tcsh, zsh Leaving executable shells in the cgi-bin directory of a web server may allow an attacker to execute arbitrary commands on the target machine with the privileges of the HTTP daemon. %NASLMINLEV...
PT-1996-1045 · Sh +2 · Sh +2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned, however, the issue concerns systems with Perl, sh, csh, or other shell interpreters installed in the cgi-bin directory. Description: The issue allows remote attackers to execute arbitrary comman...