phpbb.ssh.D.txt

/usr/bin/perl ------------------------------------------------------------------------ Severino Honorato - /server irc.priv8crew.info Priv8crew - ssh.D.Worm use IO::Socket; use LWP::Simple; my $processo = "/usr/local/apache/bin/httpd -DSSL"; $SIG"INT" = "IGNORE"; $SIG"HUP" = "IGNORE"; $SIG"TERM" ...

CVE-2004-2547

NetWin 1 SurgeMail before 2.0c and 2 WebMail allow remote attackers to obtain sensitive information via HTTP requests that a specify the / URI, b specify the /scripts/ URI, or c specify a non-existent file, which reveal the path in an error message...

CVE-2004-2381

HttpRequest.java in Jetty HTTP Server before 4.2.19 allows remote attackers to cause denial of service memory usage and application crash via HTTP requests with a large Content-Length...

CVE-2004-1804

wMCam server 2.1.348 allows remote attackers to cause a denial of service no new connections via multiple malformed HTTP requests without the GET command...

firstclass.txt

/ http://secunia.com/advisories/13415 written by dila released on 11.12.04 compile with ms vc++ remember to link with winsock / define WIN32LEANANDMEAN include "windows.h" define IDDMAIN 101 define IDIMAIN 103 define IDCSERV 1000 define IDCSOCKS 1002 define IDHALT 1004 // Next default values for...

CVE-2004-1223

The Management Agent in F-Secure Policy Manager 5.11.2810 allows remote attackers to gain sensitive information, such as the absolute path for the web server, via an HTTP request to fsmsh.dll without any parameters...

CVE-2004-1084

Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles...

JanaServer 2 - Multiple Remote Denial of Service Vulnerabilities

JanaServer 2 - Multiple Remote Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/11780/info JanaServer 2 is a commercially available proxy server designed for the Microsoft Windows platform. It contains support for services such as HTTP, FTP, email, and RealPlayer...

JanaServer 2 - Multiple Remote Denial of Service Vulnerabilities

source: https://www.securityfocus.com/bid/11780/info JanaServer 2 is a commercially available proxy server designed for the Microsoft Windows platform. It contains support for services such as HTTP, FTP, email, and RealPlayer streaming. Multiple remote denial of service vulnerabilities affect...

GLSA-200411-18 : Apache 2.0: Denial of Service by memory consumption

The remote host is affected by the vulnerability described in GLSA-200411-18 Apache 2.0: Denial of Service by memory consumption Chintan Trivedi discovered a vulnerability in Apache httpd 2.0 that is caused by improper enforcing of the field length limit in the header-parsing code. Impact : By...

[SA13040] Caudium HTTP Request Processing Denial of Service

TITLE: Caudium HTTP Request Processing Denial of Service SECUNIA ADVISORY ID: SA13040 VERIFY ADVISORY: http://secunia.com/advisories/13040/ CRITICAL: Moderately critical IMPACT: DoS WHERE: From remote SOFTWARE: Caudium 1.x http://secunia.com/product/4196/ DESCRIPTION: A vulnerability has been...

Global Spy Software Cyber Web Filter 2 - IP Filter Bypass

source: https://www.securityfocus.com/bid/11562/info Global Spy Software Cyber Web Filter is affected by an IP filter bypass vulnerability. This issue is due to a failure of the application to properly handle exceptional HTTP requests. An attacker may leverage this issue to bypass filters based o...

Icecast 2.0.1 (Win32) - Remote Code Execution (1)

/ by Luigi Auriemma Shellcode add-on by Delikon www.Delikon.de Because of all the forbidden bytes in a http get request i had to use a very small shellcode, which was blown up by Msf::Encoder::PexAlphaNum. Great encoder. -------------------------------------------------------------------------...

PHP-Nuke SQL Injection Edit/Save Message(s) Bug

No description provided by source. !/usr/bin/perl use LWP; $log = "poskomenphpnukesavemsg.txt"; $Agent = "Mbahmubangga/1.0"; $proxy = "http://172.9.1.11:80/"; proxy:port ... $browser = LWP::UserAgent-new; $browser - agent$Agent; $url = 'http://www.sitewithphpnuke.com/admin.php'; $browser-proxyhtt...

[UNIX] vBulletin SQL Injection While Verifying Subscription Information

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

Limbo CMS <= 1.0.4.2 Multiple Vulnerabilitiesa

Binary data 3526.prm...

CVE-2004-1720

The 1 address.html and possibly 2 calendar.html pages in Merak Mail Server 5.2.7 allow remote attackers to gain sensitive information via an invalid HTTP request, which reveals the installation path. NOTE: it is unclear whether the calendar.html is an exposure, since the path is leaked in web log...

CVE-2004-0662

PowerPortal 1.x allows remote attackers to gain sensitive information via invalid or missing parameters in HTTP requests to 1 resize.php or 2 modules.php, which reveals the path in an error message...

CVE-2004-1749

Attack Mitigator IPS 5500 3.11.008, and possibly other versions, when configured in a one-armed routing configuration, allows remote attackers to cause a denial of service CPU consumption via a large number of HTTP requests...

Lexmark Multiple HTTP Servers - Denial of Service

Lexmark Multiple HTTP Servers - Denial of Service GET / HTTP/1.0\r\n /Host:AAAAAA1024. milw0rm.com 2004-07-22...