328 matches found
Sambar Server search CGI vulnerability
Vulnerable: Sambar Server 4.4 Beta 3 Systems : WinNT, Win95 OSR2, possibly Linux affected Product : http://www.sambar.com Discovery : [email protected] Discussion ----------- The Sambar Server comes with a non-caching HTTP proxy server and basic SMTP, POP3, and IMAP4 proxy servers compiled in...
Account Manager CGI Vulnerability
Product: Account Manager Versions: ALL including LITE and PRO haven't been able to test ENTERPRISE OS: Unix and Winnt Vendor: Notified, http://www.cgiscriptcenter.com/ The Problem: The Script allows any remote user access to the Administration Control Panel through overwriting the Admin Password...
poll_it.txt
The CGI is available from: http://www.cgi-world.com/pollit.html The bug takes place when calling the CGI and passing it parameters that overwrite settings initialized in the CGI: /cgi-bin/pollit/PollItSSIv2.0.cgi?datadir=/etc/passwd%00 Because the CGI initializes it's internal variables before...
Big Brother bb-hostsvc.sh 'HOSTSVC' Parameter Traversal Arbitrary File Access
The version of Big Brother running on the remote host is affected by a directory traversal vulnerability in the 'HOSTSVC' parameter of the 'bb-hostsvc.sh' CGI. A remote attacker can exploit this to read sensitive information from the system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2000-0588
SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands...
Sambar Server /cgi-bin/mailit.pl Arbitrary Mail Relay
The Sambar web server is running and the 'mailit.pl' cgi is installed. This CGI takes a POST request from any host and sends a mail to a supplied address. %NASLMINLEVEL 70300 Copyright 2000 by Hendrik Scholz Changes by Tenable: - Revised plugin title 4/2/2009 - Updated to use compat.inc, added CV...
CVE-2000-0423
Buffer overflow in Netwin DNEWSWEB CGI program allows remote attackers to execute arbitrary commands via long parameters such as group, cmd, and utag...
Microsoft FrontPage htimage.exe CGI Remote Overflow
The htimage.exe CGI is installed on the remote web server. This CGI is vulnerable to a remote buffer overflow attack when it is given the request : /cgi-bin/htimage.exe/AAAA....AAA?0,0 A remote attacker could use this to crash the web server, or possibly execute arbitrary code. %NASLMINLEVEL 7030...
TalentSoft Web+ webplus CGI Traversal Arbitrary File Access
The 'webplus' CGI allows an attacker to view any file on the target computer by requesting : GET /cgi-bin/webplus?script=/../../../../etc/passwd %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription scriptid10367; scriptversion"1.33"; scriptcveid"CVE-2000-0282"...
SGI InfoSearch infosrch.cgi fname Parameter Arbitrary Command Execution
The remote web server is hosting the 'infosrch.cgi' script. The installed version of this script fails to properly sanitize user- supplied input to the 'fname' variable. An attacker, exploiting this flaw, could execute arbitrary commands on the remote host subject to the privileges of the web...
PlusMail plusmail CGI Arbitrary Command Execution
The 'plusmail' CGI is installed. Some versions of this CGI have a well known security flaw that lets an attacker read arbitrary file with the privileges of the HTTP server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
hhp-whois_adv0013.txt
hhp Whois.CGI - ADVISORY. hhp hhp-ADV12 11/9/99 8:42:57pm CST By: loophole [email protected] - http://hhp.perlx.com What?: Hole in several known/unknown Whois CGI packages. Versions?: 1. Whois Internic Lookup - version: 1.0 2. CC Whois - Version: 1.0 3. Matt's Whois - Version: 1 Exploit!: These...
Matthew Wright FormMail CGI (formmail.cgi) Arbitrary Mail Relay
The 'formmail.pl' is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the HTTP daemon root or nobody. %NASLMINLEVEL 70300 This script was written by Mathieu Perrin See the Nessus Scripts License for details Changes by Tenable: -...
Matt Wright guestbook.pl Arbitrary Command Execution
The 'guestbook.pl' is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the HTTP daemon root or nobody. %NASLMINLEVEL 70300 This script was written by Mathieu Perrin See the Nessus Scripts License for details Changes by Tenable: ...
Test-Cgi Remote Command Execution (CVE-1999-0070)
The CGI program might be saved as the file "test.cgi" in the appropriate directory on a web server. Test-cgi program allows remote command execution. Remote attackers can exploit this vulnerability by passing a command as a parameter to the script which lists files on the server...
freestats-cgi.txt
Date: Sat, 21 Nov 1998 12:54:41 -0500 From: John Carlton To: [email protected] Subject: Freestats.com CGI vulnerability About a year ago I developed an exploit for the free web stats services offered at freestats.com, and supplied the webmaster with proper code to patch the bug. After hearing ...
valueclick-cgi.txt
Date: Sat, 19 Dec 1998 17:19:34 +0200 From: Philip Stoev Reply-To: Bugtraq List To: [email protected] Subject: ValueClick CGI Vulnerability The following text is in the "KOI8-R" character set. Your display is set for the "US-ASCII" character set. Some characters may be displayed incorrectly. T...
Multiple Vendor phf CGI Arbitrary Command Execution
The 'phf' CGI is installed. This CGI has a well known security flaw that lets an attacker execute arbitrary commands with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Multiple Vendor jj CGI Arbitrary Command Execution
The 'jj' CGI is installed. This CGI has a well-known security flaw that lets a remote attacker execute arbitrary commands with the privileges of the web server. Please note that Nessus only checked for the existence of this CGI, and did not attempt to exploit it. %NASLMINLEVEL 70300 C Tenable...
IRIX handler CGI Arbitrary Command Execution
The 'handler' cgi is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the http daemon root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...