EUVD-2008-7120

Malware in sbrugna...

CBL Mariner 2.0 Security Update: python-twisted (CVE-2024-41671)

The version of python-twisted installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41671 advisory. - Twisted is an event-based framework for internet applications, supporting Python 3.6+. The HTTP 1.0...

HTTP Request/Response Smuggling

Twisted is vulnerable to HTTP Request/Response Smuggling. The vulnerability is due to the HTTP 1.0 and 1.1 server provided by twisted.web which can process pipelined HTTP requests out-of-order...

CVE-2023-25725

HAProxy before 2.7.3 may allow a bypass of access control because HTTP/1 headers are inadvertently lost in some situations, aka "request smuggling." The HTTP header parsers in HAProxy may accept empty header field names, which could be used to truncate the list of HTTP headers and thus make some...

FreeBSD : zeek -- potential DoS vulnerabilities (2b5fc9c4-eaca-46e0-83d0-9b10c51c4b1b)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 2b5fc9c4-eaca-46e0-83d0-9b10c51c4b1b advisory. - Tim Wojtulewicz of Corelight reports: A missing field in the SMB FSControl script-land record could...

CVE-2021-41451

A misconfiguration in HTTP/1.0 and HTTP/1.1 of the web interface in TP-Link AX10v1 before V1211117 allows a remote unauthenticated attacker to send a specially crafted HTTP request and receive a misconfigured HTTP/0.9 response, potentially leading into a cache poisoning attack...

Design/Logic Flaw

A misconfiguration in HTTP/1.0 and HTTP/1.1 of the web interface in TP-Link AX10v1 before V1211117 allows a remote unauthenticated attacker to send a specially crafted HTTP request and receive a misconfigured HTTP/0.9 response, potentially leading into a cache poisoning attack...

CVE-2021-41451

A misconfiguration in HTTP/1.0 and HTTP/1.1 of the web interface in TP-Link AX10v1 before V1211117 allows a remote unauthenticated attacker to send a specially crafted HTTP request and receive a misconfigured HTTP/0.9 response, potentially leading into a cache poisoning attack...

Security update for tomcat (moderate)

openSUSE Security Update: Security update for tomcat Announcement ID: openSUSE-SU-2021:1490-1 Rating: moderate References: 1188278 1188279 1190558 Cross-References: CVE-2021-30640 CVE-2021-33037 CVE-2021-41079 CVSS scores: CVE-2021-30640 NVD : 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N...

Request Smuggling

tomcat-coyote is vulnerable request smuggling. Incorrect way of parsing of the HTTP transfer-encoding request header causes request smuggling when it is used with a reverse proxy and if the client declared it would only accept an HTTP/1.0 response...

Apache Tomcat HTTP Request Smuggling Vulnerability (Jul 2021) - Linux

Apache Tomcat is prone to an HTTP request smuggling vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

DEBIAN-CVE-2021-33037

Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy. Specifically: - Tomcat incorrectly ignored the transfer...

tomcat -- HTTP request smuggling in multiple versions

Bahruz Jabiyev, Steven Sprecher and Kaan Onarlioglu of NEU seclab reports: Apache Tomcat did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy. Specifically: Tomcat incorrectly ignored...

[SECURITY] Fedora 31 Update: python-waitress-1.4.3-1.fc31

Waitress is meant to be a production-quality pure-Python WSGI server with very acceptable performance. It has no dependencies except ones which live in the Python standard library. It runs on CPython on Unix and Windows under Python 2.6+ and Python 3.3+. It is also known to run on PyPy 1.6.0+ on...

HTTP Request Smuggling: LF vs CRLF handling in Waitress

Impact Waitress implemented a "MAY" part of the RFC7230 https://tools.ietf.org/html/rfc7230section-3.5 which states: Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR...

[SECURITY] Fedora 30 Update: yaws-2.0.6-1.fc30

HTTP 1.0 and HTTP 1.1 web server capable of both static content page delivery and dynamic content generation using embedded Erlang code in the HTML pages. It provides virtual hosting capabilities and implements HTTP tracing and other debugging functionality such as interactive interpreter...

XM tech security monitoring equipment, pre-uc-httpd server causes the presence of any directory traversal and local file inclusion vulnerabilities

0x01 vulnerability overview 1, the vendor information Manufacturer name: XM tech Official domain name: www.xiongmaitech.com Hangzhou XM Information Technology Co., Ltd. specialize in security monitoring, intelligent video independent research and development dedicated to security video monitoring...

Nextcloud: Response Header injection using redirect_uri together with PHP that utilizes Header Folding according to RFC1945 and Internet Explorer 11

Hi, I noticed that the redirecturi used to redirect users to any location on the page, passes in all data into a header"Location.. without any validation. The problem is that PHP current PHP-versions of Debian/Ubuntu, there seem to be a patch properly in place in other dists actually built the...

Microsoft IIS 2.0/3.0/4.0/5.0/5.1 Internal IP Address Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1499/info When a remote user attempts to access an area protected by basic authentication with no realm defined, while specifying HTTP 1.0, Microsoft IIS will return an Access Denied error message containing the internal ...

KNet Web Server 1.04b - Stack Corruption BoF

No description provided by source. !/usr/bin/perl KNet Web Server Stack corruption BoF PoC Written by Wireghoul - http://www.justanotherhacker.com Date: 2013/04/11 Version: 1.04b Tested on: WinXP SP3 use IO::Socket::INET; $host = shift; $port = shift; print KNet Web Server stack corruption BoF Po...