Дырка в AnalogX Simple Server

Запрос к длинному имени файла в каталоге cgi-bin приводит к краху сервера...

WebSite Pro webfind.exe keywords Parameter Remote Overflow

The 'webfind.exe' CGI script on the remote host is vulnerable to a buffer overflow when given a too long 'keywords' argument. This problem allows an attacker to execute arbitrary code as root on this host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

Дырки в Alibaba

Стандартный CGI-Скрипт позволяет выполнение любых приложений...

CVE-2000-0627

BlackBoard CourseInfo 4.0 does not properly authenticate users, which allows local users to modify CourseInfo database information and gain privileges by directly calling the supporting CGI programs such as userupdatepasswd.pl and userupdateadmin.pl...

Computer Software Manufaktur Alibaba 2.0 - Piped Command

Computer Software Manufaktur Alibaba 2.0 - Piped Command source: https://www.securityfocus.com/bid/1485/info Alibaba Web Server fails to filter piped commands when executing cgi-scripts. This can be used to execute commands with the privileges of the web server process on a target machine...

alibaba.txt

Application: Alibaba 2.0 Problem Type: Multiple Problems3 Author: Prizm Platforms: Windows 95/98/NT Vendor Status: Not Informed Vendor Website: http://csm.alcyonis.fr Product Description ------------------- Alibaba is a fully functional http server for windows 95/98/NT. It supports cgi among many...

Computer Software Manufaktur Alibaba 2.0 - Piped Command

source: https://www.securityfocus.com/bid/1485/info Alibaba Web Server fails to filter piped commands when executing cgi-scripts. This can be used to execute commands with the privileges of the web server process on a target machine. http://victim/cgi-bin/post32.exe|echo%20c:\text.txt...

Virtual Visions FTP ftp.pl dir Parameter Traversal Arbitrary File Access

The remote ftp server contains a CGI script that provides and HTML interface. This CGI script contains a vulnerability that an attacker can use to get the listing of the content of arbitrary directories. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

poll_it.txt

The CGI is available from: http://www.cgi-world.com/pollit.html The bug takes place when calling the CGI and passing it parameters that overwrite settings initialized in the CGI: /cgi-bin/pollit/PollItSSIv2.0.cgi?datadir=/etc/passwd%00 Because the CGI initializes it's internal variables before...

CVE-2000-0674

ftp.pl CGI program for Virtual Visions FTP browser allows remote attackers to read directories outside of the document root via a .. dot dot attack...

CVE-2000-0424

The CVE-2000-0424 entry concerns the CGI Counter 4.0.7 (by George Burgyan) and describes remote command execution via shell metacharacters. The connected documents corroborate that the vulnerability arises from improper handling of shell metacharacters in the CGI Counter 4.0.7 interface, enabling...

CVE-2000-0473

Buffer overflow in AnalogX SimpleServer 1.05 allows a remote attacker to cause a denial of service via a long GET request for a program in the cgi-bin directory...

CVE-2000-0424

The CGI counter 4.0.7 by George Burgyan allows remote attackers to execute arbitrary commands via shell metacharacters...

CVE-2000-0411

CVE-2000-0411 concerns Matt Wright’s FormMail CGI script. The vulnerability allows remote attackers to obtain environmental variables via the env_report parameter, potentially exposing sensitive system information. Connected PT-2000-1353 notes affected versions are not specified and provides no f...

CVE-2000-0564

The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter...

Poll It CGI data_dir Parameter Arbitrary File Access

'PollItSSIv2.0.cgi' is installed. This CGI has a well known security flaw that lets an attacker retrieve any file from the remote system, e.g. /etc/passwd. %NASLMINLEVEL 70300 This script was written by Thomas Reinke See the Nessus Scripts License for details Changes by Tenable: - attempt to read...

Big Brother bb-hostsvc.sh 'HOSTSVC' Parameter Traversal Arbitrary File Access

The version of Big Brother running on the remote host is affected by a directory traversal vulnerability in the 'HOSTSVC' parameter of the 'bb-hostsvc.sh' CGI. A remote attacker can exploit this to read sensitive information from the system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Дырка в CGI PollIt

Классическое сочетание дырок - обратный путь в директориях, "ядовитый 0" и др. приводят в к возможности доступа к любому файлу: /cgi-bin/pollit/PollItSSIv2.0.cgi?datadir=/etc/passwd00...

Дырка в Pollit CGI

Используя "ядовитый NUll" можно получить любой файл с сервера:http://www.targethost.com/pollit/PollItv2.0.cgi?datadir=etcpasswd00...

Pollit CGI-script opens doors!

Description: Bug in PollItSSIv2.0.cgi reveals info. Compromise: Accessing files that arn't in the web-dir. Vulnerable Systems: Pollit v2.0 only tested version. Details: When you run the Pollit CGI script ALL your world readable files could be accessed by any web user, for example your /etc/passwd...