5772 matches found
Apache Httpd < 2.2.8 : mod_proxy_ftp UTF-7 XSS
A workaround was added in the modproxyftp module. On sites where modproxyftp is enabled and a forward proxy is configured, a cross-site scripting attack is possible against Web browsers which do not correctly derive the response character set following the rules in RFC 2616...
CVE-2007-6326
Sergey Lyubka Simple HTTPD shttpd 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI...
CVE-2007-6326
Sergey Lyubka Simple HTTPD shttpd 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI...
Apache Httpd < 2.2.8 : mod_proxy_balancer XSS
A flaw was found in the modproxybalancer module. On sites where modproxybalancer is enabled, a cross-site scripting attack against an authorized user is possible...
Apache Httpd < 2.2.8 : mod_proxy_balancer DoS
A flaw was found in the modproxybalancer module. On sites where modproxybalancer is enabled, an authorized user could send a carefully crafted request that would cause the Apache child process handling that request to crash. This could lead to a denial of service if using a threaded...
simple-py.txt
usage: poc.py host port import socket import sys print "-----------------------------------------------------------------------" print "Simple HTTPD 1.3 /aux Denial of Service\n" print "url: http://shttpd.sourceforge.net\n" print "author: shinnai" print "mail: shinnaiatautisticidotorg" print "sit...
Simple HTTPD 1.3 (/aux) Remote Denial of Service Exploit
No description provided by source. usage: poc.py host port import socket import sys print "-----------------------------------------------------------------------" print "Simple HTTPD 1.3 /aux Denial of Service\n" print "url: http://shttpd.sourceforge.net\n" print "author: shinnai" print "mail:...
Simple HTTPd 1.41 - '/aux' Remote Denial of Service
usage: poc.py host port import socket import sys print "-----------------------------------------------------------------------" print "Simple HTTPD 1.3 /aux Denial of Service\n" print "url: http://shttpd.sourceforge.net\n" print "author: shinnai" print "mail: shinnaiatautisticidotorg" print "sit...
Simple HTTPD <= 1.41 (/aux) Remote Denial of Service Exploit
No description provided by source. usage: poc.py host port import socket import sys print "-----------------------------------------------------------------------" print "Simple HTTPD 1.3 /aux Denial of Service\n" print "url: http://shttpd.sourceforge.net\n" print "author: shinnai" print "mail:...
Simple HTTPd 1.41 - aux Remote Denial of Service
Simple HTTPd 1.41 - aux Remote Denial of Service usage: poc.py host port import socket import sys print "-----------------------------------------------------------------------" print "Simple HTTPD 1.3 /aux Denial of Service\n" print "url: http://shttpd.sourceforge.net\n" print "author: shinnai"...
Simple HTTPD <= 1.41 (/aux) Remote Denial of Service Exploit
Exploit for unknown platform in category dos / poc ============================================================ Simple HTTPD = 1.41 /aux Remote Denial of Service Exploit ============================================================ usage: poc.py host port import socket import sys print...
Fedora 7 : phpMyAdmin-2.11.3-1.fc7 (2007-4298)
Upstream released 2.11.3 - Removed the RPM scriptlets doing httpd restarts 227025 - Patched an information disclosure known as CVE-2007-0095 221694 - Provide virtual phpmyadmin package and a httpd alias 231431 Note that Tenable Network Security has extracted the preceding description block...
Sun SPARC XSCF Control Package (XCP)固件未明拒绝服务漏洞
Sun SPARC XSCF是一款扩展系统控制设备。 Sun SPARC XSCF固件的telnet1, Secure Shell SSH, 和httpd存在安全问题,远程攻击者可以利用漏洞对设备进行拒绝服务攻击。 目前没有详细漏洞细节提供。 Sun XCP 1040 补丁下载: Sun XCP 1040 Sun OPL-M4-5-8-9000-XCP-1050-SP-G-F http://javashoplm.sun.com/ECom/docs/Welcome.jsp?StoreId=8&PartDetailId...
Simple HTTPD <= 1.38 Multiple Remote Vulnerabilities
No description provided by source. Luigi Auriemma Application: Simple HTTPD http://shttpd.sourceforge.net Versions: = 1.38 Platforms: Windows, nix, QNX, RTEMS only Windows seems vulnerable Bugs: A directory traversal B scripts and CGI viewing/downloading %20 char found by Shay priel in Jun 2007...
Simple HTTPD multiple security vulnerabilities
Directory traversal, script source code access...
Two vulnerabilities in Simple HTTPD 1.38
Luigi Auriemma Application: Simple HTTPD http://shttpd.sourceforge.net Versions: = 1.38 Platforms: Windows, nix, QNX, RTEMS only Windows seems vulnerable Bugs: A directory traversal B scripts and CGI viewing/downloading 20 char found by Shay priel in Jun 2007 Exploitation: remote Date: 07 Dec 200...
simple-traverse.txt
Luigi Auriemma Application: Simple HTTPD http://shttpd.sourceforge.net Versions: = 1.38 Platforms: Windows, nix, QNX, RTEMS only Windows seems vulnerable Bugs: A directory traversal B scripts and CGI viewing/downloading %20 char found by Shay priel in Jun 2007 Exploitation: remote Date: 07 Dec 20...
Simple HTTPd 1.38 - Multiple Vulnerabilities
Luigi Auriemma Application: Simple HTTPD http://shttpd.sourceforge.net Versions: = 1.38 Platforms: Windows, nix, QNX, RTEMS only Windows seems vulnerable Bugs: A directory traversal B scripts and CGI viewing/downloading %20 char found by Shay priel in Jun 2007 Exploitation: remote Date: 07 Dec 20...
Simple HTTPD <= 1.38 Multiple Remote Vulnerabilities
Exploit for unknown platform in category remote exploits ==================================================== Simple HTTPD = 1.38 Multiple Remote Vulnerabilities ==================================================== Luigi Auriemma Application: Simple HTTPD http://shttpd.sourceforge.net Versions: =...
httpd security, bug fix, and enhancement update
2.0.52-38.ent.0.1 - use oracle index page oracleindex.html - updated string and distro in specfile 2.0.52-38.ent - fix server version string 236419 2.0.52-37.ent - add security fix for CVE-2007-3847 250760 2.0.52-36.ent - add modversion, load in default httpd.conf 248696 2.0.52-35.ent - add...