25 matches found
EUVD-2001-0189
Malware in sbrugna...
EUVD-2002-0888
Malware in sbrugna...
EUVD-2002-1337
Malware in sbrugna...
localweb2000 1.1 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2268/info LocalWEB2000 is subject to a directory traversal. Requesting a specially crafted HTTP request with a known filename will enable an attacker to gain read access to the requested file...
LocalWEB2000 2.1.0 Standard - File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4820/info A vulnerability exists in LocalWEB2000 related to content password protection. It is possible to have LocalWEB2000 treat files as unprotected by requesting them as files within the '.' current directory. If the...
LocalWeb2000 remote read
The remote host is running LocalWeb2000. Version 2.1.0 of LocalWeb2000 allows an attacker to view protected files on the host's computer. Example: http://www.vulnerableserver.com/./protectedfolder/protectedfile.htm It may also disclose the NetBIOS name of the remote host when it receives malforme...
LocalWeb2000 <= 2.1.0 Multiple Vulnerabilities
LocalWeb2000 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2002 Jason Lidow Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2002-1353
Affected software : LocalWEB2000 HTTP server 2.1.0. Vulnerability : Passwords are stored in plain text under the web document root in the file users.lst, enabling remote access to passwords via a direct request to users.lst. Impact : Confidentiality of passwords is partially compromised as inform...
CVE-2002-1353
LocalWEB2000 HTTP server 2.1.0 stores passwords in plain text under the web document root in users.lst, which allows remote attackers to obtain the passwords via a direct request to users.lst...
LocalWeb2000 2.10 Crafted Request File Disclosure
Binary data 1508.prm...
CVE-2002-0897
CVE-2002-0897 affects LocalWeb2000 web server (version 2.1.0 and earlier). The vulnerability allows remote attackers to bypass access restrictions and view restricted files by using a URL containing the "/./" directory. Connected sources also reference multiple remote vulnerabilities for LocalWeb...
CVE-2002-0897
LocalWEB2000 2.1.0 web server allows remote attackers to bypass access restrictions for restricted files via a URL that contains the "/./" directory...
CVE-2002-0897
LocalWEB2000 2.1.0 web server allows remote attackers to bypass access restrictions for restricted files via a URL that contains the "/./" directory...
CVE-2002-1353
LocalWEB2000 HTTP server 2.1.0 stores passwords in plain text under the web document root in users.lst, which allows remote attackers to obtain the passwords via a direct request to users.lst...
LocalWeb2000 2.1.0 Multiple Remote Vulnerabilities
The remote host is running LocalWeb2000. Version 2.1.0 of LocalWeb2000 allows an attacker to view protected files on the host's computer. It may also disclose the NetBIOS name of the remote host when it receives malformed directory requests. This script was created by Jason Lidow The vulnerabilit...
Directory protection bypass in LocalWeb2000
It's possible to access protected directory by adding ./...
[SecurityOffice] LocalWeb2000 Web Server Protected File Access Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---- LocalWeb2000 Web Server Protected File Access Vulnerability ---- - ---- Type File Disclosure - ---- Release Date May 24, 2002 - ---- Product / Vendor LocalWEB2000 is an HTTP server for the Windows suite of operating systems. LocalWEB2000 is...
LocalWEB2000 2.1.0 Standard - File Disclosure
source: https://www.securityfocus.com/bid/4820/info A vulnerability exists in LocalWEB2000 related to content password protection. It is possible to have LocalWEB2000 treat files as unprotected by requesting them as files within the '.' current directory. If the file http://server/file.txt is set...
LocalWEB2000 2.1.0 Standard - File Disclosure
LocalWEB2000 2.1.0 Standard - File Disclosure source: https://www.securityfocus.com/bid/4820/info A vulnerability exists in LocalWEB2000 related to content password protection. It is possible to have LocalWEB2000 treat files as unprotected by requesting them as files within the '.' current...
CVE-2001-0189
Directory traversal vulnerability in LocalWEB2000 HTTP server allows remote attackers to read arbitrary commands via a .. dot dot attack in an HTTP GET request...