CVE-2000-0411

Matt Wright's FormMail CGI script allows remote attackers to obtain environmental variables via the envreport parameter...

Matt Wright FormMail 1.61.71.8 - Environmental Variables Disclosure

Matt Wright FormMail 1.61.71.8 - Environmental Variables Disclosure source: https://www.securityfocus.com/bid/1187/info An unauthorized remote user is capable of obtaining CGI environmental variable information from a web server running Matt Wright FormMail by requesting a specially formed URL th...

CVSweb Detection

CVSweb is a web interface for a CVS repository. It allows users to browse through the history of the source code of a given project. If your environement contains sensitive source code, then access to this CGI should be password-protected. C Tenable Network Security, Inc. include"compat.inc";...

Matt Wright FormMail 1.6/1.7/1.8 - Environmental Variables Disclosure

source: https://www.securityfocus.com/bid/1187/info An unauthorized remote user is capable of obtaining CGI environmental variable information from a web server running Matt Wright FormMail by requesting a specially formed URL that specifies the email address to send the details to. This is...

CVE-2000-0381

The Gossamer Threads DBMan db.cgi CGI script allows remote attackers to view environmental variables and setup information by referencing a non-existing database in the db parameter...

CVE-2000-0423

Buffer overflow in Netwin DNEWSWEB CGI program allows remote attackers to execute arbitrary commands via long parameters such as group, cmd, and utag...

Gossamer Threads DBMan 2.0.4 - DBMan Information Leakage

Gossamer Threads DBMan 2.0.4 - DBMan Information Leakage source: https://www.securityfocus.com/bid/1178/info Requesting an invalid database file from a web server implementing Gossamer Threads DBMan scripts will return a CGI error message containing environmental variables to a remote user withou...

Gossamer Threads DBMan 2.0.4 - DBMan Information Leakage

source: https://www.securityfocus.com/bid/1178/info Requesting an invalid database file from a web server implementing Gossamer Threads DBMan scripts will return a CGI error message containing environmental variables to a remote user without any authorization. The parameters displayed include the...

CVE-2000-0422

Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter...

Cart32 3.0 - expdate Administrative Information Disclosure

Cart32 3.0 - expdate Administrative Information Disclosure source: https://www.securityfocus.com/bid/1358/info By appending the string "/expdate" to a request for the cart32.exe executable, http: //target/cgi-bin/cart32.exe/expdate an attacker can access an error message followed by a debugging...

Buffer overflows in Skyline/SpinBox client

There are some buffer overflows in SpinBox/1.1 from the spinserver.conf. SpinBox is an SSI/cgi-tool used by advertisement companies, made by Skyline. Since this is closed source software, I can't post the sources. The buffer overflows are mostly in the query string strcat and strcpy instead of...

ultrascripts ultraboard 1.6 - Directory Traversal

source: https://www.securityfocus.com/bid/1164/info UltraBoard 1.6 and possibly all 1.x versions is vulnerable to a directory traversal attack that will allow any remote browser to download any file that the webserver has read access to. On Windows instalations, the file must reside on the same...

spin_client.cgi Remote Overflow

There is a buffer overrun in the 'spinclient.cgi' CGI program, which will allow anyone to execute arbitrary commands with the same privileges as the web server root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Thanks to Tollef Fog Heen for his help include 'compat.inc' ;...

BizDB bizdb-search.cgi Arbitrary Command Execution

BizDB is a web database integration product using Perl CGI scripts. One of the scripts, bizdb-search.cgi, passes a variable's contents to an unchecked open call and can therefore be made to execute commands at the privilege level of the web server. The variable is dbname, and if passed a semicolo...

CVE-2000-0012

Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands...

CVE-2000-0012

Affected component: w3-msql CGI in the miniSQL package. Root cause: a buffer overflow in the w3-msql CGI program. Impact: remote attackers could exploit this to execute commands and potentially gain a shell on the affected system. Exploitation status: described as a remote overflow vulnerability;...

CVE-2000-0192

The default installation of Caldera OpenLinux 2.3 includes the CGI program rpmquery, which allows remote attackers to determine what packages are installed on the system...

CVE-2000-0192

The CVE-2000-0192 issue affects the default installation of Caldera OpenLinux 2.3 via the rpm_query CGI, which allows remote attackers to enumerate installed RPMs by accessing the CGI over the web server. This leads to information disclosure about installed services and versions (partial confiden...

CMD.EXE overflow (CISADV000420)

Cerberus Information Security Advisory CISADV000420 http://www.cerberus-infosec.co.uk/advisories.html Released : 20th April 2000 Name : CMD.EXE overflow Affected Systems : Windows NT/2000 Issue : See details Author : David Litchfield [email protected] Description The Cerberus Security Team...

Microsoft FrontPage htimage.exe CGI Remote Overflow

The htimage.exe CGI is installed on the remote web server. This CGI is vulnerable to a remote buffer overflow attack when it is given the request : /cgi-bin/htimage.exe/AAAA....AAA?0,0 A remote attacker could use this to crash the web server, or possibly execute arbitrary code. %NASLMINLEVEL 7030...