CVE-2006-6276

HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web...

CVE-2006-6276

Sun Java System Proxy Server versions prior to 20061130 are affected by an HTTP request smuggling vulnerability when used with Sun Java System Application Server or Sun Java System Web Server. Exploitation could bypass HTTP request filtering, enable web session hijacking, permit cross-site script...

CVE-2006-6276

HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web...

PT-2006-6905 · Sun · Sun Java System Application Server +2

Name of the Vulnerable Software and Affected Versions: Sun Java System Proxy Server versions prior to 20061130 Description: The issue allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web caches. This is achieved via...

NetSniper network pioneer works-vulnerability warning-the black bar safety net

NetSniper network tip of the soldiers is in Shanghai on a large lake network system Co., Ltd. developed the network access detection and a controller. It can automatically detect the network without permission the erection of a proxy server is system or an illegal router, and through the illegal...

KGB 1.87 (Local Inclusion) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ======================================================== KGB 1.87 Local Inclusion Remote Code Execution Exploit ======================================================== !/usr/bin/php -q -d shortopentag=on ? $devilteam = " :::::::::...

Sun Solaris kernel SSL proxy server DoS

No description provided...

CVE-2006-5037

MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via a MIME encoded URL in the sqcontentsrc parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting XSS attacks. NOTE: the researcher reports that "The vendor...

CVE-2006-5037

CVE-2006-5037 affects MySource Matrix versions after 3.8. The issue allows remote attackers to use the application as an HTTP proxy via a MIME-encoded URL in the sq_content_src parameter, enabling access to arbitrary sites using the server’s IP and enabling cross-site scripting (XSS). The PT-2006...

CVE-2006-5036

MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as an HTTP proxy server via the sqremotepageurl parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting XSS attacks. NOTE: the researcher reports that "The...

IP address of recon and hidden Experiences to talk about-vulnerability warning-the black bar safety net

In the formal variety of“hacking”before, hackers will take a variety of means, the probeyou can also say“scouting”the other side of the host information in order to decide what the most effective method to achieve their own purposes. A look at how hackers learn the most basic network...

How to access blocked sites-bug warning-the black bar safety net

The following methods can also access other blocked website,, so please privately transmitted, is after all public, the more the more dangerous, after providing these services the site also been blocked, the more harm than good. 1, recommended method: use the P2P CDN network access Coral is a P2P...

Governs the granting of leave true when True also false-the“real”IP security risks-vulnerability warning-the black bar safety net

Let us look at the ASP code first: Function getIP Dim strIPAddr as string If Request. ServerVariables"HTTPXFORWARDEDFOR" = "" OR InStrRequest. ServerVariables"HTTPXFORWARDEDFOR", "unknown" 0 Then strIPAddr = Request. ServerVariables"REMOTEADDR" ElseIf InStrRequest...

CentOS 3 / 4 : sysreport (CESA-2005:502)

An updated sysreport package that fixes an information disclosure flaw is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team Sysreport is a utility that gathers information about a system's hardware and configuration. The information...

MS06-029: Vulnerability in Microsoft Exchange Server Running Outlook Web Access Could Allow Script Injection (912442)

The remote host is running a version of the Outlook Web Access that contains cross-site scripting flaws. This vulnerability could allow an attacker to convince a user to run a malicious script. If this malicious script is run, it would execute in the security context of the user. Attempts to...

WinGate < 6.1.3 POST Request Buffer Overflow

Binary data 3642.prm...

WinGate POST Request Buffer Overflow

The remote host appears to be running WinGate Proxy Server, a Windows application for managing and securing Internet access. According to its banner, the version of WinGate installed on the remote host is affected by a buffer overflow vulnerability in its HTTP proxy service. An attacker with acce...

WinGate proxy server buffer overflow

Buffer overflow on oversized POST request...

DEBIAN-CVE-2006-2786

HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via 1 invalid HTTP response headers with spaces...

CVE-2005-4806

CVE-2005-4806 affects Sun Java System Web Proxy Server 3.6 SP7 and earlier. The vulnerability is described as multiple unspecified remote vulnerabilities that allow an attacker to cause a denial of service (unresponsive service) via unknown vectors. The provided sources identify the affected prod...