1179 matches found
CVE-2005-0866
CVE-2005-0866 affects cdrecord before 4:2.0. When DEBUG is enabled, it allows local users to overwrite arbitrary files via a symlink attack on temporary files. The issue is documented across NVD, Ubuntu, Mandrake advisories, and related CVE entries, which note that an updated package containing a...
ngIRCd <= 0.8.2 Remote Format String Exploit
No description provided by source. / ngircdfsexp.c ngIRCd = 0.8.2 remote format string exploit Note: To obtain a successful exploitation, we need that ngIRCd has been compiled with IDENT, logging to SYSLOG and DEBUG enabled. Original Reference: http://www.nosystem.com.ar/advisories/advisory-11.tx...
ngIRCd 0.8.2 - Remote Format String
/ ngircdfsexp.c ngIRCd Use: ./ngircdfsexp -h options options: -h host or IP -p ircd port by default 6667 -t type of target system -g syslog GOT address -o offset RET addr by default 0x0806b000 -b brutefoce the RET address from 0x0806b000 + offset -l targets list root@servidor:/home/coki/audit...
CVE-2004-1100
Cross-site scripting XSS vulnerability in mailpost.exe in MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to execute arbitrary web script or HTML via the append parameter...
CVE-2004-1103
MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to gain sensitive information via the debug parameter, which reveals information such as the path to the web root and the web server version...
CVE-2004-2498
Unspecified vulnerability in the error handler in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and earlier, when using the default error template and debug mode is set to ON, allows remote attackers to determine internal directory structures via unknown attack vectors...
CVE-2004-1100
Cross-site scripting XSS vulnerability in mailpost.exe in MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to execute arbitrary web script or HTML via the append parameter...
CVE-2004-1103
MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to gain sensitive information via the debug parameter, which reveals information such as the path to the web root and the web server version...
phpCMS <= 1.2.1 Xss Vulnerability, Information disclosure
Title: phpCMS = 1.2.1 Xss Vulnerability, Information disclosure Affects: - = 1.2.1 Effect: Cross Site Attack session hijacking, ... Id: cbsa-0006 Release Date: 2004/11/26 Author: Cyrille Barthelemy [email protected] -- 1. Introduction ------------------------ phpCMS is a content management...
TIPS MailPost append Parameter XSS
TIPS MailPost, a web application used for emailing HTML form data to a third party, is installed on the remote host. The version of MailPost hosted on the remote web server has a cross-site scripting vulnerability in the 'append' variable of mailpost.exe when debug mode is enabled. Debug mode is...
MailPost discloses sensitive system information when operating in debug mode
Overview A vulnerability is reported to exist in MailPost version 5.1.1sv and possibly earlier versions that may permit a remote attacker to gain sensitive information about the server configuration and environment.. Description According to the ProCheckUp report, MailPost contains a vulnerabilit...
MailPost vulnerable to cross-site scripting in the 'append' variable passed to the file as part of an HTTP GET request
Overview A cross-site scripting vulnerability is reported to exist in MailPost version 5.1.1sv and possibly earlier versions. Description According to a report by ProCheckUp, MailPost is vulnerable to a Cross-Site Scripting attack via the 'append' variable. The 'append variable is passed as part ...
FreeBSD : courier-imap -- format string vulnerability in debug mode (26)
The following package needs to be updated: courier-imap %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg616cf823f48b11d89837000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...
Sendmail < 8.6.8 Long Debug Local Overflow
Binary data 2016.prm...
courier-imap -- format string vulnerability in debug mode
An iDEFENSE security advisory describes a format string vulnerability that could be exploited when Courier-IMAP is run in debug mode DEBUGLOGIN set...
NETGEAR DG834G unauthorized access
It's possible to switch router to debug mode with unauthorized root access...
NETGEAR DG834G SPECIAL FEATURES
By opening http://192.168.0.1/setup.cgi?todo=debug you enable the router's debug mode.Then you just telnet at 192.168.0.1 at port 23 and then you have a root shell. Also i found that if you just telnet to 192.168.0.1 2602 you will get a prompt from the service ZEBRA that is running on the router....
netgearDG834G.txt
By opening http://192.168.0.1/setup.cgi?todo=debug you enable the router's debug mode.Then you just telnet at 192.168.0.1 at port 23 and then you have a root shell. Also i found that if you just telnet to 192.168.0.1 2602 you will get a prompt from the service ZEBRA that is running on the router....
Apache mod_gzip (with debug_mode) <= 1.2.26.1a Remote Exploit
No description provided by source. / \ exploit code for modgzip with debugmode = 1.2.26.1a / \ Created by xCrZx crazyeinstein yahoo com /05.06.03/ / \ Tested on RedHat 8.0 Psyche here is target for it, / also tested on FreeBSD 4.7 1.3.19.2a here is no target for it : / \ / / \ / Single mode: \ /...
Apache mod_gzip (with debug_mode) <= 1.2.26.1a Remote Exploit
Exploit for linux platform in category remote exploits ============================================================= Apache modgzip with debugmode = 1.2.26.1a Remote Exploit ============================================================= / \ exploit code for modgzip with debugmode = 1.2.26.1a / ...