636 matches found
Joomla! 1.5.12 - readexec Remote files
Joomla! 1.5.12 - readexec Remote files . TITLE: Joomla 1.5.12 read/exec remote files AUTHOR: Nikola Petrov [email protected] VERSION: 1.0 LICENSE: GNU General Public License Platform: Joomla 1.5.12 Vulnerabilities discovery and implementation: Nikola Petrov [email protected] Date: 27.08.2009 ...
Update Protection against HP OpenView Network Node Manager ovlogin.exe Buffer Overflow
A buffer overflow vulnerability exists in HP OpenView Network Node Manager NNM. The vulnerability is due to a boundary error in ovlogin.exe, the login process of a CGI application shipped with OpenView NNM. A remote unauthenticated attacker can exploit this vulnerability by sending a crafted HTTP...
Stack overflow
Stack-based buffer overflow in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted HTTP request...
Command injection
The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service application hang via a crafted HTTP request to TCP port 28012...
CVE-2009-2173
The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service application hang via a crafted HTTP request to TCP port 28012...
CVE-2009-2173
The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service application hang via a crafted HTTP request to TCP port 28012...
Authentication flaw
The WebDAV extension in Microsoft Internet Information Services IIS 5.0 on Windows 2000 SP4 does not properly decode URLs, which allows remote attackers to bypass authentication, and possibly read or create files, via a crafted HTTP request, aka "IIS 5.0 WebDAV Authentication Bypass Vulnerability...
Update Protection against Oracle Application Server 10g OPMN Service Format String Vulnerability
A vulnerability was reported in Oracle Application Server, a multi-platform solution for developing and deploying enterprise applications and web sites. The flaw is due to insufficient validation of the URI part of HTTP requests. Remote attackers could exploit this vulnerability by sending a...
Design/Logic Flaw
Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.splitheadervalue function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of...
CVE-2008-3656
The CVE-2008-3656 issue is a denial-of-service in WEBrick’s HTTP header handling: WEBrick::HTTPUtils.split_header_value in WEBrick::DefaultFileHandler backed by a backtracking regex causes CPU exhaustion when processing crafted HTTP requests. Affected Ruby versions include 1.8.5 and earlier, 1.8....
CVE-2008-0527
The HTTP server in Cisco Unified IP Phone 7935 and 7936 running SCCP firmware allows remote attackers to cause a denial of service reboot via a crafted HTTP request...
CVE-2008-0527
The HTTP server in Cisco Unified IP Phone 7935 and 7936 running SCCP firmware allows remote attackers to cause a denial of service reboot via a crafted HTTP request...
WireShark<0.99.6 MMS protocol DOS PoC
No description provided by source. include winsock2.h include stdio.h pragma commentlib, "ws232" char http = "POST / HTTP/1.0\r\n" "Content-Type: application/vnd.wap.mms-message\r\n"; char hoststr = "Host: %s:%d\r\n"; char contentlenstr = "Content-Length: %d\r\n\r\n";...
Goollery < 0.04b Multiple XSS Vulnerabilities - Active Check
Goollery is prone to multiple cross-site-scripting XSS vulnerabilities eg. through the SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2005-1836
NEXTWEB iSite allows remote attackers to cause a denial of service error 500 via a crafted HTTP request, possibly involving wildcard requests for .jsp files...
Microsoft Internet Information Server (IIS) discloses contents of files via crafted request containing "%3F+.htr"
Overview A vulnerability exists in Microsoft Information Server IIS in which a crafted HTTP GET request may return the contents of a file on the affected server. A possible target of such a request might be a script that should only be executable not readable by unauthenticated remote users. The...