Lucene search
K

1326 matches found

Debian CVE
Debian CVE
added 2008/03/05 11:0 p.m.24 views

CVE-2008-1167

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

10CVSS8.2AI score0.06681EPSS
Exploits0
NVD
NVD
added 2008/02/06 9:0 p.m.12 views

CVE-2008-0633

Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service exception via a user name with a large number of quotes, which triggers the overflow during escaping...

6CVSS7AI score0.01931EPSS
Exploits0References4
Prion
Prion
added 2008/02/06 9:0 p.m.12 views

Buffer overflow

Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service exception via a user name with a large number of quotes, which triggers the overflow during escaping...

6CVSS7.6AI score0.01931EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/02/06 8:0 p.m.14 views

CVE-2008-0633

Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service exception via a user name with a large number of quotes, which triggers the overflow during escaping...

7AI score0.01931EPSS
Exploits0References4
CVE
CVE
added 2008/02/06 8:0 p.m.39 views

CVE-2008-0633

The CVE-2008-0633 entry covers Anon Proxy Server (versions up to 0.102) with a buffer overflow when user authentication is enabled. A username containing a large number of quotes triggers the overflow during escaping, enabling a remote denial of service . Connected documents confirm the affected ...

6CVSS7AI score0.01931EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2008/02/05 2:0 a.m.13 views

Authentication flaw

Unspecified vulnerability in the IP-authentication feature in the Secure Site 5.x-1.0 and 4.7.x-1.0 module for Drupal allows remote attackers to gain the privileges of a user who has authenticated from behind the same proxy server as the attacker...

10CVSS7.3AI score0.02429EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/02/05 1:0 a.m.19 views

CVE-2008-0568

Unspecified vulnerability in the IP-authentication feature in the Secure Site 5.x-1.0 and 4.7.x-1.0 module for Drupal allows remote attackers to gain the privileges of a user who has authenticated from behind the same proxy server as the attacker...

6.7AI score0.02429EPSS
Exploits0References4
securityvulns
securityvulns
added 2008/02/05 12:0 a.m.45 views

Anon Proxy Server <= 0.102 remote buffer overflow

====================================================================== Anon Proxy Server = 0.102 remote buffer overflow ====================================================================== Author: L4teral l4teral 4t gmail com Impact: remote buffer overflow Status: patch available...

1.3AI score
Exploits0
securityvulns
securityvulns
added 2008/02/05 12:0 a.m.34 views

Anon Proxy Server buffer overflow

Buffer overflow on oversized username with double quote characters...

5AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2008/02/04 12:0 a.m.11 views

Anon Proxy Server 0.1000.102 - Remote Authentication Buffer Overflow

Anon Proxy Server 0.1000.102 - Remote Authentication Buffer Overflow source: https://www.securityfocus.com/bid/27593/info Anon Proxy Server is prone to a remote buffer-overflow vulnerability because the application fails to sufficiently bounds-check user-supplied input. Successful exploits allow...

1.3AI score
Exploits0
Exploit DB
Exploit DB
added 2008/02/04 12:0 a.m.32 views

Anon Proxy Server 0.100/0.102 - Remote Authentication Buffer Overflow

source: https://www.securityfocus.com/bid/27593/info Anon Proxy Server is prone to a remote buffer-overflow vulnerability because the application fails to sufficiently bounds-check user-supplied input. Successful exploits allow remote attackers to execute arbitrary code in the context of the...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.14 views

Debian: Security Advisory (DSA-726-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.02298EPSS
Exploits1References3
Cent OS
Cent OS
added 2008/01/13 2:19 a.m.63 views

squid security update

CentOS Errata and Security Advisory CESA-2007:1130-04 Updated squid packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance...

5CVSS5.7AI score0.26858EPSS
Exploits2References8
Gentoo Linux
Gentoo Linux
added 2008/01/09 12:0 a.m.39 views

Squid: Denial of service

Background Squid is a multi-protocol proxy server. Description The Wikimedia Foundation reported a memory leak vulnerability when performing cache updates. Impact A remote attacker could perform numerous specially crafted requests to the vulnerable server, resulting in a Denial of Service...

5CVSS6.3AI score0.26858EPSS
Exploits2
CERT
CERT
added 2008/01/03 12:0 a.m.26 views

Jetty fails to properly process URLs that contain double / characters

Overview The Jetty web server contains a vulnerability that may allow an attacker to access private files or directories. Description Jetty is a web server that is implemented in Java. Jetty contains a vulnerability in the way it processes URLs with multiple "/" slash characters. See the Jetty...

5CVSS7.8AI score0.03832EPSS
Exploits0References5
NVD
NVD
added 2007/12/28 9:46 p.m.15 views

CVE-2007-6569

Cross-site scripting XSS vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246...

4.3CVSS5.8AI score0.01875EPSS
Exploits0References6
NVD
NVD
added 2007/12/28 9:46 p.m.14 views

CVE-2007-6570

Cross-site scripting XSS vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.6 SP11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309...

4.3CVSS5.8AI score0.02235EPSS
Exploits0References9
Prion
Prion
added 2007/12/28 9:46 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.6 SP11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309...

4.3CVSS6.2AI score0.02235EPSS
Exploits0References9Affected Software2
Prion
Prion
added 2007/12/28 9:46 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246...

4.3CVSS6.2AI score0.01875EPSS
Exploits0References6Affected Software2
Prion
Prion
added 2007/12/28 9:46 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6611356...

4.3CVSS6.2AI score0.01659EPSS
Exploits0References5Affected Software2
Rows per page
Query Builder