1319 matches found
CVE-2007-6459
Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in 1 the host parameter to diagdns.php, and 2 the host parameter and possibly 3 the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460...
CVE-2007-6460
Multiple cross-site scripting XSS vulnerabilities in Anon Proxy Server before 0.101 allow remote attackers to inject arbitrary web script or HTML via the URI, which is later displayed by 1 log.php or 2 logerror.php, a different vulnerability than CVE-2007-6459...
CVE-2007-6460
CVE-2007-6460 refers to multiple cross-site scripting (XSS) vulnerabilities in Anon Proxy Server prior to 0.101. The affected software is Anon Proxy Server; the vulnerable component is the URI handling that is later displayed by log.php or logerror.php. The description consistently notes XSS enab...
CVE-2007-6459
The CVE-2007-6459 entry affects Anon Proxy Server 0.100 (and likely 0.101). The vulnerability allows remote command execution via shell metacharacters in the host parameter to diagdns.php and in the host (and possibly the port) parameter to diagconnect.php. This is explicitly described as a separ...
CVE-2007-6459
Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in 1 the host parameter to diagdns.php, and 2 the host parameter and possibly 3 the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460...
CVE-2007-6460
Multiple cross-site scripting XSS vulnerabilities in Anon Proxy Server before 0.101 allow remote attackers to inject arbitrary web script or HTML via the URI, which is later displayed by 1 log.php or 2 logerror.php, a different vulnerability than CVE-2007-6459...
aps-exec.txt
By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...
Anon Proxy Server远程SHELL命令执行漏洞
Anon Proxy Server是一款支持多协议的代理服务程序。 Anon Proxy Server不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB权限执行任意SHELL命令。 问题是脚本不安全调用system函数,提交SHELL命令作为参数,可导致WEB权限执行。 Anon Proxy Server 0.100 目前没有解决方案提供: http://sourceforge.net/projects/anonproxyserver/ http://127.0.0.1/anonproxyserver0.100/diagdns.php?host=google.com%5C%...
Anon Proxy Server Software Detection
The remote service is a proxy server named Anon Proxy Server, which can operate either as a normal HTTP / HTTPS / Socks proxy or a P2P anonymous proxy. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid29703;...
Anon Proxy Server - Remote Code Execution
By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...
[SECURITY] Fedora 7 Update: squid-2.6.STABLE16-2.fc7
Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...
Authentication flaw
The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication for HTTPS pages, which has unknown impact and attack vectors. NOTE: it is not clear whether this issue crosses privilege boundaries...
CVE-2007-6385
The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication for HTTPS pages, which has unknown impact and attack vectors. NOTE: it is not clear whether this issue crosses privilege boundaries...
CVE-2007-6385
CVE-2007-6385 affects Kerio WinRoute Firewall (pre-6.4.1). The proxy server component does not properly enforce authentication for HTTPS pages. The underlying impact is stated as unknown within the available documents, and there is no detail on exploit vectors or specific conditions required for ...
Anon Proxy Server 0.1000 Remote Command Execution Vulnerability
No description provided by source. By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...
Anon Proxy Server 0.1000 - Remote Command Execution
Anon Proxy Server 0.1000 - Remote Command Execution By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...
Anon Proxy Server 0.1000 Remote Command Execution Vulnerability
Exploit for unknown platform in category web applications =============================================================== Anon Proxy Server 0.1000 Remote Command Execution Vulnerability =============================================================== By Michael Brooks Vulnerability type: Multiple...
Anon Proxy Server 0.1000 - Remote Command Execution
By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...
squid proxy server DoS
Invalid cash update reply processing...
With SockOnline software easily break the port restriction-vulnerability warning-the black bar safety net
Fiis divided into the Sock, HTTP, FTP, and other types, respectively suitable for different applications. However, sometimes the network is only open 8 0 port for HTTP web browsing. Faced with this situation, we must do nothing? Of course not, in SockOnline this special agent software help, we ca...