Summit Computer Networks Lil' HTTP Server 2 - 'URLCount.cgi' HTML Injection

source: https://www.securityfocus.com/bid/5115/info Lil' HTTP server is a web server application for Windows environments and is maintained by Summit Computer Networks. Reportedly, Lil' HTTP Server is vulnerable to HTML injection attacks. The vulnerability is present in the 'REPORT' function foun...

sendmail.php.txt

Sequoiasoft's sendmail php script dangerous - By jwilkins PHP-Nuke Written by Sequioa Software, this script allows execution of arbitrary code by a malicious user. Written by Sequioa Software, this script allows execution of arbitrary code by a malicious user. Essentially, popen executes a shell...

Gopher2.3.1p0 and below remote buffer overflow.

Gopher2.3.1p0 and below has many overflowable functions in the daemon. Most of them overflow with hardcoded data that gets passed along - making it not possible to change any pointers. The "halidate" function is not one of those. If sent the request "halidate large buffer" you will overwrite a 51...

ms-excel-macros-dll.txt

Microsoft Excel macros can execute DLL functions. Microsoft Excel - a spreadsheet program created by Microsoft - is vulnerable to an exploit that allows the execution DLL functions without user intervention or knowledge. Microsoft Excel has a function named "CALL" which can be embedded in...