CVE-2001-0535

Example applications Exampleapps in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or execute files by spoofing the "HTTP Host" CGI.Host variable in 1 the "Web Publish" example script, and ...

CVE-2001-0535

Example applications Exampleapps in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or execute files by spoofing the "HTTP Host" CGI.Host variable in 1 the "Web Publish" example script, and ...

WebSphere application server plugin issue & vendor fix

I've had the opportunity to work with IBM WebSphere application server for a few months now and, in the course of playing around with some buffer overrun testing, a potential issue came up. WebSphere uses the HTTP Host: header to decide which WAS Virtual Host will service a particular request...

Imail Web Service Remote DoS Attack v.2

Imail Web Service Remote DoS Attack v.2 Release Date: August 17, 2000 Systems Affected: Ipswitch Imail 6.00 2-1 Description: The following is a simple DoS we found while working on Retina's CHAMCommon Hacking Attack Methods HTTP auditing module which should be released within the next two weeks...