Lucene search
K

1326 matches found

Tenable Nessus
Tenable Nessus
added 2006/07/05 12:0 a.m.29 views

CentOS 3 / 4 : sysreport (CESA-2005:502)

An updated sysreport package that fixes an information disclosure flaw is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team Sysreport is a utility that gathers information about a system's hardware and configuration. The information...

7.5CVSS5.4AI score0.01971EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2006/06/13 12:0 a.m.29 views

MS06-029: Vulnerability in Microsoft Exchange Server Running Outlook Web Access Could Allow Script Injection (912442)

The remote host is running a version of the Outlook Web Access that contains cross-site scripting flaws. This vulnerability could allow an attacker to convince a user to run a malicious script. If this malicious script is run, it would execute in the security context of the user. Attempts to...

2.6CVSS5.5AI score0.39173EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/06/09 12:0 a.m.25 views

WinGate < 6.1.3 POST Request Buffer Overflow

Binary data 3642.prm...

7.5CVSS7.3AI score0.70909EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2006/06/09 12:0 a.m.34 views

WinGate POST Request Buffer Overflow

The remote host appears to be running WinGate Proxy Server, a Windows application for managing and securing Internet access. According to its banner, the version of WinGate installed on the remote host is affected by a buffer overflow vulnerability in its HTTP proxy service. An attacker with acce...

7.5CVSS6.6AI score0.70909EPSS
Exploits5References3
securityvulns
securityvulns
added 2006/06/07 12:0 a.m.38 views

WinGate proxy server buffer overflow

Buffer overflow on oversized POST request...

4.5AI score
Exploits0References1Affected Software1
OSV
OSV
added 2006/06/02 8:2 p.m.1 views

DEBIAN-CVE-2006-2786

HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via 1 invalid HTTP response headers with spaces...

2.6CVSS8.5AI score0.01766EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/05/25 10:0 a.m.25 views

CVE-2005-4806

Multiple unspecified vulnerabilities in Sun Java System Web Proxy Server 3.6 SP7 and earlier allow remote attackers to cause a denial of service unresponsive service via unknown vectors...

6.9AI score0.02455EPSS
Exploits0References4
CVE
CVE
added 2006/05/25 10:0 a.m.57 views

CVE-2005-4806

CVE-2005-4806 affects Sun Java System Web Proxy Server 3.6 SP7 and earlier. The vulnerability is described as multiple unspecified remote vulnerabilities that allow an attacker to cause a denial of service (unresponsive service) via unknown vectors. The provided sources identify the affected prod...

5CVSS6.9AI score0.02455EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2006/05/25 12:0 a.m.44 views

Write-up by Amit Klein: &quot;IE + some popular forward proxy servers = XSS, defacement &#40;browser cache poisoning&#41;&quot;

IE + some popular forward proxy servers = XSS, defacement browser cache poisoning Or "Exploiting the XmlHttpRequest object in IE" part II Amit Klein, May 2006 Preface ======= When I published my Exploiting the XmlHttpRequest object in IE - Referrer spoofing and a lot more..." 1 paper, I only...

0.1AI score
Exploits0
myhack58
myhack58
added 2006/04/13 12:0 a.m.17 views

To shadowless go without a trace anonymous breakthrough network limit-vulnerability warning-the black bar safety net

Network management as the name suggests, is every pipe of the network, and tried various means to restrict our Internet access people. In the network established all sorts of rules, don't download, don't use IM, not allowed to access the restricted site, etc., so we can't enjoy the Internet bring...

6.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2006/03/15 2:14 p.m.24 views

Moderate: Red Hat Security Advisory: squid security update

Updated squid packages that fix a security vulnerability as well as several bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HT...

5CVSS5.7AI score0.03404EPSS
Exploits0References8
Cent OS
Cent OS
added 2006/03/08 12:19 a.m.73 views

squid security update

CentOS Errata and Security Advisory CESA-2006:0052 An updated squid package that fixes a security vulnerability as well as several issues is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance proxy cachin...

5CVSS5.7AI score0.03404EPSS
Exploits0References8
securityvulns
securityvulns
added 2006/03/08 12:0 a.m.39 views

Novell Bordermanager proxy server DoS

No description provided...

1.6AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2006/03/08 12:0 a.m.36 views

RHEL 4 : squid (RHSA-2006:0052)

The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2006:0052 advisory. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. A denial of service flaw was found i...

5CVSS5.6AI score0.03404EPSS
Exploits0References10
securityvulns
securityvulns
added 2006/02/10 12:0 a.m.27 views

[SA18753] e/pop Web Conferencing Topic Name Script Insertion

TITLE: e/pop Web Conferencing Topic Name Script Insertion SECUNIA ADVISORY ID: SA18753 VERIFY ADVISORY: http://secunia.com/advisories/18753/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: e/pop Web Conferencing 4.x http://secunia.com/product/7962/ DESCRIPTION:...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2006/02/01 12:0 a.m.53 views

Blue Coat ProxySG proxy server protection bypass

It's possible to bypass target port limitations with HTTP CONNECT method...

0.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2006/01/26 12:0 a.m.50 views

Technical Note by Amit Klein: &quot;XST Strikes Back&quot;

Technical note XST Strikes Back or perhaps "Return from the Proxy"... Amit Klein, January 2006 Introduction ============ About three years ago, the concept of "Cross Site Tracing" 1 was introduced to the web application security community. In essence, the classic XST is about amplifying an existi...

Exploits0
NVD
NVD
added 2006/01/09 11:3 p.m.20 views

CVE-2006-0144

The proxy server feature in go-pear.php in PHP PEAR 0.2.2, as used in Apache2Triad, allows remote attackers to execute arbitrary PHP code by redirecting go-pear.php to a malicious proxy server that provides a modified version of Tar.php with a malicious extractModify function...

7.5CVSS7.6AI score0.01827EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2006/01/09 11:3 p.m.26 views

CVE-2006-0144

The proxy server feature in go-pear.php in PHP PEAR 0.2.2, as used in Apache2Triad, allows remote attackers to execute arbitrary PHP code by redirecting go-pear.php to a malicious proxy server that provides a modified version of Tar.php with a malicious extractModify function...

7.5CVSS6.3AI score0.01827EPSS
Exploits0References1
Prion
Prion
added 2006/01/09 11:3 p.m.24 views

Code injection

The proxy server feature in go-pear.php in PHP PEAR 0.2.2, as used in Apache2Triad, allows remote attackers to execute arbitrary PHP code by redirecting go-pear.php to a malicious proxy server that provides a modified version of Tar.php with a malicious extractModify function...

7.5CVSS8.1AI score0.01827EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder