22 matches found
EUVD-2007-3382
Malware in sbrugna...
EUVD-2002-1021
Malware in sbrugna...
EUVD-2002-2381
Malware in sbrugna...
keyfocus kf web server 1.0.8 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6180/info KeyFocus KF Web Server is vulnerable to a directory traversal attack. This is due to the web server's inability to properly handle file names containing consecutive dot characters. By exploiting this...
CVE-2002-2403
Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences...
CVE-2002-2403
Technical details for CVE-2002-2403 are not provided in the connected documents; the initial description includes a vulnerability summary but no additional specifics. Monitor for updates.
Cross site scripting
Cross-site scripting XSS vulnerability in index.wkf in KeyFocus KF web server 3.1.0 allows remote attackers to inject arbitrary web script or HTML via the opsubmenu parameter...
CVE-2007-3396
Cross-site scripting XSS vulnerability in index.wkf in KeyFocus KF web server 3.1.0 allows remote attackers to inject arbitrary web script or HTML via the opsubmenu parameter...
CVE-2007-3396
Cross-site scripting XSS vulnerability in index.wkf in KeyFocus KF web server 3.1.0 allows remote attackers to inject arbitrary web script or HTML via the opsubmenu parameter...
CVE-2007-3396
CVE-2007-3396 is an XSS vulnerability in the KeyFocus (KF) web server 3.1.0, affected code path index.wkf where an attacker can inject arbitrary script/HTML via the opsubmenu parameter. The issue arises from improper handling/validation of the opsubmenu input, enabling script execution in the vic...
KF Web Server 3.1.0 admin console XSS
KF Web Server 3.1.0 admin console XSS -------------------------------------- site:http://www.keyfocus.net/kfws/ parameter:opsubmenu poc --- http://127.0.0.1:9727/index.wkf?opmenu=0&opsubmenu=aaaa223E3Cscript 3Ealert'xss';3C/script3E bug found by: Shay Priel aka Prili - [email protected]...
CVE-2002-1031
KeyFocus KF web server 1.0.2 allows remote attackers to list directories and read restricted files via an HTTP request containing a %00 null character...
CVE-2002-1031
CVE-2002-1031 affects KeyFocus (KF) web server 1.0.2. The vulnerability permits remote attackers to list directories and read restricted files through an HTTP request containing a null byte (%00). The NVD analysis indicates network access with low attack complexity and no authentication, resultin...
CVE-2002-2403
Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences...
keyfocus.txt
KeyFocus Web server is a Win32 HTTP server with web administration, a variety of logging formats, such as NCSA and W3C, CGI, compression, memory caching of static documents, directory indexing, pre-defined MIME settings, internal authentication with support for multiple realms, and a variety of U...
KeyFocus KF Web Server File Disclosure Vulnerability
KeyFocus Web server is a Win32 HTTP server with web administration, a variety of logging formats, such as NCSA and W3C, CGI, compression, memory caching of static documents, directory indexing, pre-defined MIME settings, internal authentication with support for multiple realms, and a variety of U...
Key Focus KF Web Server 1.0.8 - Directory Traversal
source: https://www.securityfocus.com/bid/6180/info KeyFocus KF Web Server is vulnerable to a directory traversal attack. This is due to the web server's inability to properly handle file names containing consecutive dot characters. By exploiting this vulnerability, an attacker is able to break o...
Key Focus KF Web Server 1.0.8 - Directory Traversal
Key Focus KF Web Server 1.0.8 - Directory Traversal source: https://www.securityfocus.com/bid/6180/info KeyFocus KF Web Server is vulnerable to a directory traversal attack. This is due to the web server's inability to properly handle file names containing consecutive dot characters. By exploitin...
CVE-2002-1031
KeyFocus KF web server 1.0.2 allows remote attackers to list directories and read restricted files via an HTTP request containing a %00 null character...
CVE-2002-1032
Buffer overflow in KeyFocus KF web server 1.0.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed HTTP header...