ImgSvr <= 0.6.5 (long http post) Denial of Service Exploit

No description provided by source. !/usr/bin/perl Proof of concept. Credit's:to n00b for finding this bug. Afected :ImgSvr.exe Download softwear: http://freshmeat.net/projects/imgsvr/ Crash the server with overly long http post request.. Main site of affected product...

ImgSvr 0.6 Template Parameter Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24853/info ImgSvr is prone to a local file-include vulnerability because it fails to sanitize user-supplied input. Attackers may exploit this issue to access files that may contain sensitive information. UPDATE December 2...

ImgSvr 0.6.21 - Error Message Remote Script Execution

ImgSvr 0.6.21 - Error Message Remote Script Execution source: https://www.securityfocus.com/bid/27033/info ImgSvr is prone to a remote script-execution vulnerability because it fails to adequately sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the...

Double directory traversal in ImgSvr 0.6.21

Luigi Auriemma Application: Ada Image server ImgSvr http://adaimgsvr.sourceforge.net Versions: = 0.6.21 and SVN = 28 Platforms: Windows and nix Bug: directory traversal Exploitation: remote Date: 24 Dec 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug ...

ImgSvr 0.6.21 - Error Message Remote Script Execution

source: https://www.securityfocus.com/bid/27033/info ImgSvr is prone to a remote script-execution vulnerability because it fails to adequately sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...

CVE-2007-3714

Directory traversal vulnerability in Ada Image Server ImgSvr 0.6.5 allows remote attackers to read arbitrary files via a .. dot dot in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE...

imgsvr-traverse.txt

Portcullis Security Advisory 06-059 Vulnerable System: ImgSvr Vulnerability Title: The ImgSvr is vulnerable to directory traversal. Vulnerability discovery and development: Portcullis Security Testing Services. Further research was then carried out. Credit for Discovery: Tim Brown - Portcullis...

ImgSvr 0.6 - Template Local File Inclusion

ImgSvr 0.6 - Template Local File Inclusion source: https://www.securityfocus.com/bid/24853/info ImgSvr is prone to a local file-include vulnerability because it fails to sanitize user-supplied input. Attackers may exploit this issue to access files that may contain sensitive information. UPDATE...

ImgSvr 0.6 - &#039;Template&#039; Local File Inclusion

source: https://www.securityfocus.com/bid/24853/info ImgSvr is prone to a local file-include vulnerability because it fails to sanitize user-supplied input. Attackers may exploit this issue to access files that may contain sensitive information. UPDATE December 24, 2007: According to the vendor,...

CVE-2006-3546

Patrice Freydiere ImgSvr aka ADA Image Server allows remote attackers to cause a denial of service daemon crash via a long HTTP POST request. NOTE: this might be the same issue as CVE-2004-2463...

CVE-2006-3546

CVE-2006-3546 affects Patrice Freydiere ImgSvr (ADA Image Server). A remote attacker can cause a denial of service (daemon crash) by sending a long HTTP POST request. This entry notes a possible relation to CVE-2004-2463 but provides no additional exploit details beyond the POST-based DoS vector....

ImgSvr buffer overflow

Buffer overflow on oversized HTTP POST request...

ImgSvr <= 0.6.5 (long http post) Denial of Service Exploit

Exploit for unknown platform in category dos / poc ========================================================== ImgSvr = 0.6.5 long http post Denial of Service Exploit ========================================================== !/usr/bin/perl Proof of concept. Credit's:to n00b for finding this bug...

ImgSvr &lt;= 0.6.5 (long http post) Denial of Service Exploit

No description provided by source. !/usr/bin/perl Proof of concept. Credit's:to n00b for finding this bug. Afected :ImgSvr.exe Download softwear: http://freshmeat.net/projects/imgsvr/ Crash the server with overly long http post request.. Main site of affected product...

CVE-2004-2463

CVE-2004-2463 affects ADA Image Server (ImgSvr) 0.4. A buffer overflow in the server allows remote attackers to cause a web server crash (denial of service) or execute arbitrary code via a long GET request. The connected records corroborate the long-GET-triggered overflow as the root issue and th...

CVE-2004-2464

The CVE-2004-2464 entry concerns ADA Image Server (ImgSvr). Affected versions include 0.4 (and later notes indicate 0.6.21 and earlier are affected). The vulnerability is a directory traversal flaw in ImgSvr that allows remote attackers to read arbitrary files or list directories via hex-encoded ...

CVE-2004-1887

CVE-2004-1887 affects Ada Image Server (ImgSvr) 0.4. The vulnerability allows remote attackers to view directories or download files by making an HTTP request with a trailing %00 (null). The NVD entry notes a network attack vector with low complexity and no authentication required, resulting in p...

imgSvr.txt

Donato Ferrante Application: imgSvr http://adaimgsvr.sourceforge.net/ Version: 0.4 Bug: Index viewing Author: Donato Ferrante e-mail: [email protected] web: www.autistici.org/fdonato xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx 1. Description 2. The bug 3. The code ...

ADA IMGSVR 0.4 - Remote Directory Listing

source: https://www.securityfocus.com/bid/10026/info A vulnerability has been reported in the ImgSvr server software that may allow a remote user to the disclose root directory listings. This issue has also been reported to allow for listing of directories that reside outside the server root as...