39 matches found
EUVD-2000-0763
Malware in sbrugna...
EUVD-2000-0619
Malware in sbrugna...
EUVD-2001-0617
Malware in sbrugna...
EUVD-1999-1161
Malware in sbrugna...
EUVD-2001-0728
Malware in sbrugna...
EUVD-2000-0618
Malware in sbrugna...
Upcoming Speaking Engagements
This is a current list of where and when I am scheduled to speak: I'm teaching a live online class called "Spotlight on Cloud: The Future of Internet Security with Bruce Schneier" on O'Reilly's learning platform, Thursday, April 4, at 10:00 AM PT/1:00 PM ET. The list is maintained on this page...
OReilly WebSite 1.x/2.0 win-c-sample.exe Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2078/info O'Reilly WebSite Pro is a Windows 95/NT Web Server package. Versions 2.0 and below contained a vulnerable sample script, win-c-sample.exe, placed by default in /cgi-shl/ off the web root directory. This program ...
OReilly Software WebSite Professional 2.3.18/2.4/2.4.9 'webfind.exe' Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/1487/info O'Reilly WebSite Professional is a web server package distributed by O'Reilly & Associates. Certain versions of this web server the entire 2.X version line ship with a utility containing a remotely exploitable...
OReilly Software WebBoard 4.10.30 Pager Hostile JavaScript Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2814/info O'Reilly WebBoard is a conferencing utility, forum, threaded discussion and real-time chat server. Versions of WebBoard are vulnerable to a JavaScript code execution bug which may allow a remote denial of servic...
O'Reilly WebSite Pro args.bat Arbitrary Command Execution
The CGI 'args.bat' and/or 'args.cmd' is installed. This CGI has a well known security flaw that lets an attacker upload arbitrary files on the remote web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid1146...
CVE-2001-0626
O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character...
CVE-2001-0626
CVE-2001-0626 affects O'Reilly Website Professional
CVE-2001-0743
Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands...
CVE-2001-0743
Vulnerability CVE-2001-0743 affects O'Reilly WebBoard Pager 4.10. The issue: improper input validation allows remote attackers to trigger arbitrary JavaScript execution on other WebBoard users’ systems by sending a message containing an escaped single quote followed by JavaScript commands, which ...
CVE-2001-0743
Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands...
CVE-1999-1180
CVE-1999-1180 affects O'Reilly WebSite 1.1e and Website Pro 2.0. The CGI scripts args.bat/args.cmd are vulnerable to remote arbitrary command execution via shell metacharacters in arguments. The NASL entry notes a known exploit path and states there is no known solution at this time; no additiona...
CVE-1999-1180
O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to 1 args.cmd or 2 args.bat...
Javascript в O'Reilly WebBoard (javascript execution)
Можно вставить javascript в pager-message...
OReilly Software WebBoard 4.10.30 - Pager Hostile JavaScript
source: https://www.securityfocus.com/bid/2814/info O'Reilly WebBoard is a conferencing utility, forum, threaded discussion and real-time chat server. Versions of WebBoard are vulnerable to a JavaScript code execution bug which may allow a remote denial of service against a target WebBoard user's...