9282 matches found
Immunity Canvas: IIS_DOUBLEDECODE
Name| iisdoubledecode ---|--- CVE| CVE-2001-0333 Exploit Pack| CANVAS Description| iisdoubledecode MS01-026 Notes| CVE Name: CVE-2001-0333 VENDOR: Microsoft Notes: The IIS Double Decode module will automatically use tftp to get a MOSDEF node on the remote target. This will not work through a...
Immunity Canvas: IIS5ASP
Name| iis5asp ---|--- CVE| CVE-2001-0241 Exploit Pack| CANVAS Description| iis5asp MS01-023 Notes| References: http://www.eeye.com/html/Research/Advisories/AD20010501.html http://www.microsoft.com/technet/security/bulletin/MS01-023.asp CVE Name: CVE-2001-0241 VENDOR: Microsoft MSADV: MS01-023 MSR...
def-2001-26: IIS WebDav Lock Method Memory Leak DoS
====================================================================== Defcom Labs Advisory def-2001-26 IIS WebDav Lock Method Memory Leak DoS Author: Peter Grьndl [email protected] Release Date: 2001-05-17 ======================================================================...
Microsoft Internet Explorer 4 / Outlook 2000/5.5 - 'MSHTML.dll' Crash
source: https://www.securityfocus.com/bid/2202/info MSHTML.DLL is the shared library for parsing HTML in Internet Explorer and related applications. It may be possible for an attacker to crash this library remotely and cause a denial of service with special Jscript code. This bug involves Jscript...
MS00-091: Incomplete TCP/IP Packet Vulnerability (199346)
The hotfix for the 'incomplete TCP/IP packet' problem has not been applied. This vulnerability allows a user to prevent this host from communicating with the network. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10563; scriptversion"1.46"; scriptcvsdate"Date:...
Update: Microsoft Security Bulletin (MS00-086)
The following is a Security Bulletin from the Microsoft Product Security Notification Service. Please do not reply to this message, as it was sent from an unattended mailbox. -----BEGIN PGP SIGNED MESSAGE----- Microsoft Security Bulletin MS00-086 - -------------------------------------- Patch...
Update to Microsoft Security Bulletin MS00-086
-----BEGIN PGP SIGNED MESSAGE----- Hi All - We have updated Microsoft Security Bulletin MS00-086 http://www.microsoft.com/technet/security/bulletin/MS00-086.asp, to provide the following additional information: There is an additional restriction on the vulnerability. As originally reported, the...
McAfee VirusScan 4.5 Unquoted ImagePath Vulnerability
Description The default installation of McAfee VirusScan excludes quotes around the image path eg. ImagePath=C:\Program Files\Common Files\Network Associates\McShield\McShield.exe. Therefore, if a malicious user were to insert a hostile VB executable file named common.exe in C:\Program Files, it...
CVE-2000-0146
The CVE-2000-0146 issue affects the Java Server in Novell GroupWise Web Access Enhancement Pack. A remote attacker can cause a denial of service by sending an excessively long URL to the servlet, leading to availability impact. Connected sources corroborate a URL-length-based DoS vector (e.g., lo...
Microsoft Windows SMB Registry : Windows 2000 Service Pack Detection
By reading the registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\CSDVersion it was possible to determine the Service Pack version of the remote Windows 2000 system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10531; scriptversion"1.55";...
RE: Re[3]: Possible Exchange 5.5 Server DoS [msrc 421]
Hello 3APA3A, Thanks again for your note. Due to the timeframe of Exchange SP4 we will including a fix for this issue in that Service Pack. If you want any future status on this issue please refer to MSRC 421. Regards, [email protected] -----Original Message----- From: 3APA3A...
Watchguard Firebox Authentication DoS
Watchguard Firebox Authentication DoS Advisory Code: VIGILANTE-2000005 Release Date: August 15, 2000 Systems Affected: Tested on the newest version of the Watchguard Firebox II that was on the 22nd of June, but it is very likely that this bug exists in all prior versions that include the...
VIGILANTE-2000005.txt
Watchguard Firebox Authentication DoS Advisory Code: VIGILANTE-2000005 Release Date: August 15, 2000 Systems Affected: Tested on the newest version of the Watchguard Firebox II that was on the 22nd of June, but it is very likely that this bug exists in all prior versions that include the...
Remote Denial Of Service -- NetWare 5.0 with SP 5
Remote Denial Of Service -- NetWare 5.0 with SP 5 -------------------------------------------------------------- I encounter a buffer overflow bug in NetWare 5.0 with service pack 5. After few minutes after the attack server issue a memory allocation error. 10-07-2000 12:29:53 pm: SERVER-5.0-4631...
CVE-2000-0402
CVE-2000-0402 concerns Information Disclosure in Microsoft SQL Server 7.0: the sa password is stored in plaintext in a log file (sqlsp.log) readable by any user. This vulnerability is described as the "SQL Server 7.0 Service Pack Password" issue. Public references in the provided documents point ...
Novell Netware 5.0 SP5/6.0 SP1 - SMDR.NLM Denial of Service
source: https://www.securityfocus.com/bid/1467/info When Novell Netware is configured with IPX-Compatibility enabled, it is vulnerable to a denial of service attack by sending packets with random data to port 40193. Similar results are possible by sending fragmented packets. This has been observe...
CProxy v3.3 SP 2 DoS
Last day I found a vulnerability in CProxy while I was testing it to install in a host server in one office... Here is the test that demonstrate the existence of the bug / Remote Denial of Service for CProxy v3.3 - Service Pack 2 C |TDP| - HaCk-13 TeaM - 2000 [email protected] This program xploits a...
stream3 flood attack
Topic: Windows NT/2000 DoS via stream3 flood attack Authors: Dark Zorro , Error Date: 2 December 2000 yes... it's old Vendor Informed: 2 December 2000 Software affected: Windows NT 4.0, Windows 2000 Risk: Low Remote: Yes Exploitable: Yes SECURITY.NNOV advisories:...
Microsoft Windows SMB Registry : NT4 Service Pack Version Detection
Nessus was able to determine the Service Pack version of the Windows NT system by reading the following registry key : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\CSDVersion C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10401; scriptversion"1.56";...
MS IIS FrontPage 98 Extensions Buffer Overflow Vulnerability
Advisory ID Internal CORE-041200 1. Advisory Information Date Published: 2000-04-14 Last Update: 2000-04-14 Advisory ID: CORE-041200 Bugtraq ID: 1109 CVE Name: CVE-2000-0260 Title: MS IIS FrontPage 98 Extensions Buffer Overflow Vulnerability Class: Boundary Error Condition Buffer Overflow Remotel...