FileSeek cgi script advisory

Best to read is the online version: http://www.dsinet.org/textfiles/advisories/FileSeek-advisory.txt ------------------------------ FileSeek cgi script Advisory ------------------------------ FileSeek.cgi / FileSeek2.cgi 16/04/2002 - by Thijs Bosschert [email protected]...

FileSeek - CGI Script File Disclosure

source: https://www.securityfocus.com/bid/6784/info FileSeek is an example cgi-script from "The CGI/Perl Cookbook from John Wiley & Sons". The script is written and maintained by Craig Patchett. It is mainly used to find and download files on a web server. FileSeek.cgi and FileSeek2.cgi are prone...

FileSeek CGI Script - Remote Command Execution

FileSeek CGI Script - Remote Command Execution source: https://www.securityfocus.com/bid/6783/info FileSeek is an example cgi-script from "The CGI/Perl Cookbook from John Wiley & Sons". The script is written and maintained by Craig Patchett. It is mainly used to find and download files on a web...

FileSeek CGI Script - Remote Command Execution

source: https://www.securityfocus.com/bid/6783/info FileSeek is an example cgi-script from "The CGI/Perl Cookbook from John Wiley & Sons". The script is written and maintained by Craig Patchett. It is mainly used to find and download files on a web server. It has been reported that FileSeek.cgi a...

CGI bugs

No description provided...

Apache HTTP Server on Win32 systems does not securely handle input passed to CGI programs

Overview A vulnerability in the Apache HTTP Server running on Win32 systems Windows 9x/Me, Windows NT/2000/XP could allow an attacker to execute commands with the privileges of the web server process. Description The Apache HTTP Server is a freely available web server that runs on a variety of...

CGI bugs

No description provided...

DoS через специальные устройства в Domino (DOS DoS)

Обращение к CGI-файлу с именем содержащим название DOS-устройства и длинным расширением приводит к запуску cmd.exe...

CGIscript.net - csSearch.cgi - Remote Code Execution (up to 17,000 sites vulnerable)

CGIscript.net - csSearch.cgi - Remote Code Execution up to 17,000 sites vulnerable --------------------------------------------------------------------- Name : csSearch.cgi - Remote Code Execution Date : March 25, 2002 Product : csSearch Version : 2.3 vulnerable Vuln Type : Access Validation Erro...

CVE-2002-0099

Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service crash via a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of . dot characters...

CVE-2002-0142

CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service crash via a series of requests whose physical path is exactly 260 characters long and ends in a series of . dot characters...

CGI bugs

No description provided...

Code execution in Win32 Apache via .bat files

If server uses .bat files as CGI it's possible to execute any shell commands by using pipes...

CGI bugs

No description provided...

CVE-2001-1206

Matrix CGI vault Last Lines 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the $errorlog variable...

CVE-2002-0091

Multiple CGI scripts in CIDER SHADOW 1.5 and 1.6 allows remote attackers to execute arbitrary commands via certain form fields...

CVE-2001-1206

CVE-2001-1206 affects Matrix CGI vault Last Lines 2.0. The vulnerability: remote attackers can execute arbitrary commands via shell metacharacters in the $error_log variable, enabling remote code execution over the network. The provided sources do not specify affected versions beyond Last Lines 2...

CVE-2002-0099

Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service crash via a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of . dot characters...

CVE-2002-0142

Pi3Web CGI handler in Windows 2.0 beta 1/2 is vulnerable to a denial of service through very long CGI parameters; vendors indicate FIX in Pi3Web

CVE-2002-0099

CVE-2002-0099 affects Michael Lamont Savant Web Server 3.0. A buffer overflow occurs when handling a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of dots, allowing remote attackers to cause a denial of service (crash). The available public refer...