34 matches found
EUVD-2006-6641
Malware in sbrugna...
EUVD-2002-1002
Malware in sbrugna...
EUVD-2003-0287
Malware in sbrugna...
EUVD-2000-1006
Malware in sbrugna...
CVE-2006-6658
Inktomi Search 4.1.4 allows remote attackers to obtain sensitive information via direct requests with missing parameters to 1 help/header.html, 2 thesaurus.html, and 3 topics.html, which leak the installation path in the resulting error message, a related issue to CVE-2006-5970...
Inktomi Search Software 3.0 Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2062/info A vulnerability exists in version 3.0 of Ultrseek server aka Inktomi Search. Due to a failure to properly validate user-supplied input, URLs submitted by a remote user of the form: http://target:8765/example/...
Inktomi Traffic Server 4/5 Traffic_Manager Path Argument Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/5098/info Inktomi Traffic Server is a transparent web caching application. It is designed for use with Unix and Linux variants as well as Microsoft Windows operating environments. A buffer overflow vulnerability has been...
Inktomi Traffic Server 4.0/5.x Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7596/info Inktomi Traffic Server is prone to a cross-site scripting vulnerability. This is due to insufficient sanitization of input passed to the proxy, which will be echoed back in error pages under some circumstances. ...
Inktomi Search Software 3.0 Source Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2061/info A vulnerability exists in version 3.0 of Ultrseek server aka Inktomi Search. Due to a failure to properly validate user-supplied input, URLs submitted by a remote user of the form:...
Joomla! Component d3000 1.0.0 - SQL Injection
Powered by Download 3000 AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAiL : [email protected] DORK 1 : "Powered by Download 3000" DORK 2 : allinurl: "comd3000" EXPLOiT :...
CVE-2006-6658
Inktomi Search 4.1.4 allows remote attackers to obtain sensitive information via direct requests with missing parameters to 1 help/header.html, 2 thesaurus.html, and 3 topics.html, which leak the installation path in the resulting error message, a related issue to CVE-2006-5970...
CVE-2006-6658
Inktomi Search 4.1.4 allows remote attackers to obtain sensitive information via direct requests with missing parameters to 1 help/header.html, 2 thesaurus.html, and 3 topics.html, which leak the installation path in the resulting error message, a related issue to CVE-2006-5970...
CVE-2006-6658
The CVE-2006-6658 entry affects Verity Ultraseek/Inktomi Search 4.1.4. The vulnerability allows remote attackers to disclose the installation path by triggering errors from requests to pages such as help/header.html, thesaurus.html, and topics.html when parameters are missing or null-terminated. ...
Inktomi Search Physical Path Disclosure
This web server is running a vulnerable version of Inktomi Search Certain requests using MS-DOS special file names such as nul can cause a python error. The error message contains sensitive information such as the physical path of the webroot. This information may be useful to an attacker. OpenVA...
Inktomi Search MS-DOS Device Name Request Path Disclosure
This web server is running a vulnerable version of Verity Ultraseek formerly Inktomi Search. Certain requests using MS-DOS special file names such as NUL can cause a python error. The error message contains sensitive information such as the physical path of the webroot. This information may be...
CVE-2003-0292
Cross-site scripting XSS vulnerability in Inktomi Traffic-Server 5.5.1 allows remote attackers to insert arbitrary web script or HTML into an error page that appears to come from the domain that the client is visiting, aka "Man-in-the-Middle" XSS...
CVE-2003-0292
This CVE concerns an XSS vulnerability in Inktomi Traffic-Server 5.5.1. The issue allows remote attackers to inject arbitrary web script or HTML into error pages that appear to come from the visited domain, enabling a “Man-in-the-Middle” style XSS. Affected software: Inktomi Traffic-Server 5.5.1....
CVE-2003-0292
Cross-site scripting XSS vulnerability in Inktomi Traffic-Server 5.5.1 allows remote attackers to insert arbitrary web script or HTML into an error page that appears to come from the domain that the client is visiting, aka "Man-in-the-Middle" XSS...
Inktomi Traffic-Server crossite scripting
Crossite scripting in proxy server error message...
Inktomi Traffic-Server XSS: man-in-the-middle XSS !
Please we would like that credits of this vulnerability go to INFOHACKING Hugo Vбzquez Caramйs and Toni Cortйs Martinez. Actually we work at "Secdor R&D". The vulnerabily was found, once again, during a pen-test. INKTOMI Traffic-Server XSS We have just discovered a bug in a software called "Inkto...