CVE-2002-1850

The CVE-2002-1850 issue affects Apache’s mod_cgi in versions 2.0.39 and 2.0.40. A CGI script that writes a large amount of data to stderr can trigger a read/write deadlock between httpd and the CGI script, allowing local users and possibly remote attackers to cause a denial of service (hang and m...

CVE-2002-1930

Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username...

CVE-2002-1850

modcgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a denial of service hang and memory consumption by causing a CGI script to send a large amount of data to stderr, which results in a read/write deadlock between httpd and the CGI script...

CVE-2004-2096

Cross-site scripting XSS vulnerability in Mephistoles httpd 0.6.0 final allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the URL...

CVE-2004-2096

Technical details about CVE-2004-2096 are not publicly available in the provided documents. Monitor for updates.

Fusion SBX <= 1.2 Remote Command Execution Exploit

No description provided by source. / Fusion SBX = 1.2 exploit sileFSBXxpl This exploit use vulnerability found into Fusion SBX and create new variable and call it with a malicious function stored in config.php. This exploit utilize injection of three diverse procedures for execution of arbitrary...

CVE-2003-1137

CVE-2003-1137 affects sh-httpd versions 0.3 and 0.4. The issue allows remote attackers to read files or execute arbitrary CGI scripts via a GET request containing an asterisk (*) wildcard character, indicating improper handling of wildcards in input. The provided documents do not specify a fix or...

CVE-2005-1086

Buffer overflow in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to execute arbitrary code via an HTTP request with a long User-Agent header...

sumus[v0.2.2]: (httpd) remote buffer overflow exploit.

did a random audit of 'sumus' and found a unique/fun exploit situation... original exploit: http://fakehalo.us/xsumus.c ----------------------- example: xsumus ----------------------- gcc xsumus.c -o xsumus ./xsumus -h fedora.fakehalo.lan sumusv0.2.2: httpd remote buffer overflow exploit. by:...

Sumus 0.2.2 - HTTPd Remote Buffer Overflow

Sumus 0.2.2 - HTTPd Remote Buffer Overflow / sumusv0.2.2: httpd remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xsumus.c -o xsumus syntax: ./xsumus -pscrln -h host sumus homepage/url: http://sumus.sourceforge.net Mus is a Spanish cards game played by 4...

Sumus 0.2.2 httpd Remote Buffer Overflow Exploit

Exploit for linux platform in category remote exploits ================================================ Sumus 0.2.2 httpd Remote Buffer Overflow Exploit ================================================ / sumusv0.2.2: httpd remote buffer overflow exploit. by: vade79/v9 email protected...

Sumus 0.2.2 httpd Remote Buffer Overflow Exploit

No description provided by source. / sumusv0.2.2: httpd remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xsumus.c -o xsumus syntax: ./xsumus -pscrln -h host sumus homepage/url: http://sumus.sourceforge.net Mus is a Spanish cards game played by 4 folks...

Sumus 0.2.2 - HTTPd Remote Buffer Overflow

/ sumusv0.2.2: httpd remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xsumus.c -o xsumus syntax: ./xsumus -pscrln -h host sumus homepage/url: http://sumus.sourceforge.net Mus is a Spanish cards game played by 4 folks around a table. SUMUS is a server for...

CVE-2005-1086

Buffer overflow in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to execute arbitrary code via an HTTP request with a long User-Agent header...

CVE-2005-1086

The CVE-2005-1086 entry concerns AN HTTPD Server 1.42n, specifically the cmdIS.DLL plugin. The issue is a buffer overflow in the plugin when processing an HTTP request with a long User-Agent header, enabling remote code execution. The available documents identify the vulnerable component and caus...

CVE-2005-1087

The CVE-2005-1087 entry concerns the AN HTTPD Server 1.42n, specifically the cmdIS.DLL plugin . It describes a CRLF injection vulnerability triggered by CRLF sequences in an HTTP request, enabling remote attackers to spoof or hide logfile entries and potentially read files via an injected type co...

CVE-2005-1087

CRLF injection vulnerability in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to spoof or hide entries in the logfile, and possibly read files using an injected type command, via CRLF sequences in an HTTP request...

Multiple AN HTTPD Web Server vulnerabilities

Buffer overflows, crossite scripting...

[SA14861] AN HTTPD cmdIS.DLL Buffer Overflow and Log File Injection

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: AN HTTPD cmdIS.DLL Buffer Overflow and Log File...

AN HTTPD - CMDIS.dll Remote Buffer Overflow (PoC)

AN HTTPD - CMDIS.dll Remote Buffer Overflow PoC source: https://www.securityfocus.com/bid/13066/info AN HTTPD is reported prone to a remote buffer overflow vulnerability. Specifically, the issue presents itself in 'cmdIS.DLL' which calls the 'GetEnvironmentStrings' function to copy environment...