CVE-2007-0966

Cisco Firewall Services Module FWSM 3.x before 3.13.11, when the HTTPS server is enabled, allows remote attackers to cause a denial of service device reboot via certain HTTPS traffic...

CVE-2007-0966

The CVE-2007-0966 issue affects Cisco's Firewall Services Module (FWSM) versions 3.x prior to 3.1(3.11). When the embedded HTTPS server is enabled, crafted HTTPS traffic can trigger a remote DoS that reboots/reloads the device. Root cause is an error in handling certain HTTPS requests by the embe...

CVE-2007-0964

The vulnerability CVE-2007-0964 affects Cisco Firewall Services Module (FWSM) 3.x prior to 3.1(3.18). The root cause is an error when processing malformed HTTPS requests during authentication configured via aaa authentication match or aaa authentication include, which can allow remote attackers t...

Cisco Firewall Services Module HTTPS Traffic Temporary Denial of Service Vulnerability

Cisco Firewall Services Module versions versions prior to 3.13.11 contain a vulnerability that could allow an unauthenticated, remote attacker to create a denial of service DoS condition. The vulnerability is due to an error when the embedded HTTPS server handles certain types of requests. An...

Cisco Firewall Services Module HTTPS Request Denial of Service Vulnerability

Cisco Firewall Services Module versions prior to 3.13.18 contain a vulnerability that could allow an unauthenticated, remote attacker to create a temporary denial of service DoS condition. The vulnerability is due to an error when handling malformed HTTPS requests on devices that are configured t...

ap205-gen.txt

!/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile admin session gen. 0day! KEEP IT PRIVATE 0day! date: 30/07/06 diwou PHCKSEC c 2001-2006. see templates for code execution ;. use strict; use warnings; use LWP::UserAgent; use MD5; my...

Advanced Poll 2.0.5-dev - Remote Admin Session Generator

!/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile admin session gen. 0day! KEEP IT PRIVATE 0day! date: 30/07/06 diwou PHCKSEC c 2001-2006. see templates for code execution ;. use strict; use warnings; use LWP::UserAgent; use MD5; my...

FreeBSD : w3m -- format string vulnerability (9347d82d-9a66-11db-b271-000e35248ad7)

An anonymous person reports : w3m-0.5.1 crashes when using the -dump or -backend options to open a HTTPS URL with a SSL certificate where the CN contains '%n%n%n%n%n%n'. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

DEBIAN-CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name CN field of an SSL certificate associated with an https URL...

W3M SSL证书格式串处理漏洞

w3m是一款开放源码的文字式网页浏览器。 w3m在处理畸形格式的SSL证书里存在漏洞，远程攻击者可能利用此漏洞在用户机器上执行任意指令。 如果HTTPS URL的SSL证书中CN包含有“%n%n%n%n%n%n”字符的话，则w3m在以-dump或-backend选项打开上述URL时就会导致崩溃。 W3M W3M 0.5.1 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://w3m.sourceforge.net/...

Microsoft Project Server 2003 PDSRequest.ASP XML请求信息泄露漏洞

Microsoft Project server 2003实现部分瘦客户端功能，瘦客户端使用XML请求对HTTPS服务进行对话。 这些请求其中一个返回用于访问SQL数据库的MSProjectUser帐户的用户名和密码信息： -------------------------------------------------------------- POST http://SERVER/projectserver/logon/pdsrequest.asp HTTP/1.0 Accept: / Accept-Language: en-nz Pragma: no-cache Host:...

Mandiant First Response multiple security vulnerabilities

DoS on SSL parsing in HTTPS interface, data manipulation...

CVE-2006-6430

Web services in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 do not require HTTPS, which allows remote attackers to obtain sensitive information by sniffing the unencrypted HTTP traffic...

CVE-2006-6430

Web services in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 do not require HTTPS, which allows remote attackers to obtain sensitive information by sniffing the unencrypted HTTP traffic...

CVE-2006-6430

CVE-2006-6430 affects Xerox WorkCentre/WorkCentre Pro before versions 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000; these web services do not require HTTPS, allowing remote attackers to sniff unencrypted HTTP traffic and obtain sensitive information. Remediation is to u...

w3m -- format string vulnerability

An anonymous person reports: w3m-0.5.1 crashes when using the -dump or -backend options to open a HTTPS URL with a SSL certificate where the CN contains "%n%n%n%n%n%n"...