1326 matches found
CVE-2008-1167
Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...
CVE-2008-0633
Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service exception via a user name with a large number of quotes, which triggers the overflow during escaping...
Buffer overflow
Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service exception via a user name with a large number of quotes, which triggers the overflow during escaping...
CVE-2008-0633
Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service exception via a user name with a large number of quotes, which triggers the overflow during escaping...
CVE-2008-0633
The CVE-2008-0633 entry covers Anon Proxy Server (versions up to 0.102) with a buffer overflow when user authentication is enabled. A username containing a large number of quotes triggers the overflow during escaping, enabling a remote denial of service . Connected documents confirm the affected ...
Authentication flaw
Unspecified vulnerability in the IP-authentication feature in the Secure Site 5.x-1.0 and 4.7.x-1.0 module for Drupal allows remote attackers to gain the privileges of a user who has authenticated from behind the same proxy server as the attacker...
CVE-2008-0568
Unspecified vulnerability in the IP-authentication feature in the Secure Site 5.x-1.0 and 4.7.x-1.0 module for Drupal allows remote attackers to gain the privileges of a user who has authenticated from behind the same proxy server as the attacker...
Anon Proxy Server <= 0.102 remote buffer overflow
====================================================================== Anon Proxy Server = 0.102 remote buffer overflow ====================================================================== Author: L4teral l4teral 4t gmail com Impact: remote buffer overflow Status: patch available...
Anon Proxy Server buffer overflow
Buffer overflow on oversized username with double quote characters...
Anon Proxy Server 0.1000.102 - Remote Authentication Buffer Overflow
Anon Proxy Server 0.1000.102 - Remote Authentication Buffer Overflow source: https://www.securityfocus.com/bid/27593/info Anon Proxy Server is prone to a remote buffer-overflow vulnerability because the application fails to sufficiently bounds-check user-supplied input. Successful exploits allow...
Anon Proxy Server 0.100/0.102 - Remote Authentication Buffer Overflow
source: https://www.securityfocus.com/bid/27593/info Anon Proxy Server is prone to a remote buffer-overflow vulnerability because the application fails to sufficiently bounds-check user-supplied input. Successful exploits allow remote attackers to execute arbitrary code in the context of the...
Debian: Security Advisory (DSA-726-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
squid security update
CentOS Errata and Security Advisory CESA-2007:1130-04 Updated squid packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance...
Squid: Denial of service
Background Squid is a multi-protocol proxy server. Description The Wikimedia Foundation reported a memory leak vulnerability when performing cache updates. Impact A remote attacker could perform numerous specially crafted requests to the vulnerable server, resulting in a Denial of Service...
Jetty fails to properly process URLs that contain double / characters
Overview The Jetty web server contains a vulnerability that may allow an attacker to access private files or directories. Description Jetty is a web server that is implemented in Java. Jetty contains a vulnerability in the way it processes URLs with multiple "/" slash characters. See the Jetty...
CVE-2007-6569
Cross-site scripting XSS vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246...
CVE-2007-6570
Cross-site scripting XSS vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.6 SP11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309...
Cross site scripting
Cross-site scripting XSS vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.6 SP11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309...
Cross site scripting
Cross-site scripting XSS vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246...
Cross site scripting
Cross-site scripting XSS vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6611356...