9786 matches found
BNBForm bnbform.cgi Automessage Arbitrary File Retrieval
Binary data 1643.prm...
Sambar environ.pl Default CGI Disclosure
Binary data 1578.prm...
Sambar testcgi.exe Default CGI Disclosure
Binary data 1579.prm...
Zeus < 3.3.5a Web Server Null Byte Request CGI Source Disclosure
Binary data 1447.prm...
Apache < 2.0.46 Multiple Vulnerabilities
Binary data 1443.prm...
cvsview2.cgi Multiple Vulnerabilities
Binary data 1650.prm...
CVE-2004-0755
The FileStore capability in CGI::Session for Ruby before 1.8.1, and possibly PStore, creates files with insecure permissions, which can allow local users to steal session information and hijack sessions...
CVE-2004-0755
The CVE concerns Ruby CGI::Session FileStore creating session files with insecure permissions, enabling local users to read session data and hijack sessions. Technical details across connected docs confirm: FileStore writes session files with improper permissions, enabling a local information lea...
Mercantec SoftCart 4.00b CGI Overflow
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
Mercantec SoftCart 4.00b - CGI Overflow (Metasploit)
Mercantec SoftCart 4.00b - CGI Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Mercantec SoftCart 4.00b - CGI Overflow (Metasploit)
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Mercantec...
Savant < 3.0 GET Request CGI Source Disclosure
Binary data 1518.prm...
CGI Script Path Disclosure
Binary data 1540.prm...
Pi3Web WebServer < 2.0.1 CGI Handler Overflow
Binary data 1519.prm...
CGI:IRC Server Detection
Binary data 3530.prm...
MaxDB WebSQL < 7.5.00.18 Remote Overflow
Binary data 2528.prm...
CVSTrac cgi.c Multiple Overflows
The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains multiple flaws in the mprintf, vmprintf, and vxprintf functions in cgi.c . A remote attacker, exploiting this flaw, would be able to execute arbitrary code on the remote syste...
CVSTrac timeline.c timeline_page Function Overflow
The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains a flaw related to the timelinepage function in timeline.c that may allow an attacker to cause a buffer overflow. An attacker, exploiting this flaw, would be potentially able t...
FreeBSD : Ruby insecure file permissions in the CGI session management (e811aaf1-f015-11d8-876f-00902714cc7c)
According to a Debian Security Advisory : Andres Salomon noticed a problem in the CGI session management of Ruby, an object-oriented scripting language. CGI::Session's FileStore and presumably PStore ... implementations store session information insecurely. They simply create files, ignoring...
CVSTrac history.c history_update Function Overflow
The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains a flaw related to the historyupdate function in history.c that may allow an attacker to cause a buffer overflow and execute arbitrary code on the remote system. Nessus has...