Inktomi Traffic-Server crossite scripting

Crossite scripting in proxy server error message...

CVE-2003-0110

The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration ISA Server 2000 allow remote attackers to cause a denial of service CPU consumption or packet storm via a spoofed, malformed packet to UDP port 1745...

CVE-2003-0110

The CVE-2003-0110 issue affects Microsoft Proxy Server 2.0 and ISA Server 2000, specifically the Winsock Proxy/WinSock Proxy service (wspsrv.exe) that binds UDP port 1745. A spoofed, malformed UDP packet can trigger a denial-of-service, causing CPU exhaustion or a packet storm on the remote host....

CVE-2003-0110

The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration ISA Server 2000 allow remote attackers to cause a denial of service CPU consumption or packet storm via a spoofed, malformed packet to UDP port 1745...

Microsoft Security Bulletin MS03-012: Flaw In Winsock Proxy Service And ISA Server Firewall Service Can Cause Denial Of Service (331066)

-----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------------- Title: Flaw In Winsock Proxy Service And ISA Firewall Service Can Cause Denial Of Service 331066 Date: 09 April 2003 Software: Microsoft Proxy Server 2.0, Microsoft ISA Server Impact: denial o...

iDEFENSE Security Advisory 04.09.03: Denial of Service in Microsoft Proxy Server and Internet Security and Acceleration (ISA) S

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 04.09.03: http://www.idefense.com/advisory/04.09.03.txt Denial of Service in Microsoft Proxy Server 2.0 and Internet Security and Acceleration Server 2000 April 9, 2003 I. BACKGROUND Microsoft Corp.'s Internet Security and...

CVE-2002-1053

The CVE-2002-1053 entry documents a cross-site scripting (XSS) vulnerability in W3C Jigsaw Proxy Server prior to 2.2.1. The flaw allows remote attackers to inject and have arbitrary script executed via a URL that contains a reference to a nonexistent host, with the script included in the resultin...

CVE-2002-1053

Cross-site scripting XSS vulnerability in W3C Jigsaw Proxy Server before 2.2.1 allows remote attackers to execute arbitrary script via a URL that contains a reference to a nonexistent host followed by the script, which is included in the resulting error message...

MultiTech Proxy Server Default Null Password

The remote MultiTech Proxy Server has no password set for the 'supervisor' account. An attacker may log in the remote host and reconfigure it easily. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11504; scriptversion"1.17"; scriptcvsdate"Date: 2018/11/15 20:50:25";...

CVE-2002-1445

Cross-site scripting XSS vulnerability in CERN Proxy Server allows remote attackers to execute script as other users via a link to a non-existent page whose name contains the script, which is inserted into the resulting error page...

CVE-2002-1445

CVE-2002-1445 describes a cross-site scripting vulnerability in the CERN Proxy Server. An attacker can lure a user to click a link to a non-existent page whose name contains script code, which is then inserted into the resulting error page, allowing script execution in the context of other users....

CVE-2002-1167

IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x prior to 4.0.1.26 is affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to execute scripts as other users via an HTTP GET request. The connected documents confirm the affected product and method but do not p...

CVE-2002-1168

CVE-2002-1168 describes a cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26. An attacker can force the server to echo a CRLF-containing Location header (%0a%0d) in HTTP responses, allowing script execution in the context of anothe...

CVE-2002-1053

Cross-site scripting XSS vulnerability in W3C Jigsaw Proxy Server before 2.2.1 allows remote attackers to execute arbitrary script via a URL that contains a reference to a nonexistent host followed by the script, which is included in the resulting error message...

W3C Jigsaw Proxy Server: Cross-Site Scripting Vulnerability (REPOST)

W3C Jigsaw Proxy Server: Cross-Site Scripting Vulnerability =========================================================== Affected: Jigsaw 2.2.0 and earlier http://www.w3.org/Jigsaw/RelNotes.html2.2.0 Fixed: Jigsaw 2.2.1 http://www.w3.org/Jigsaw/RelNotes.html2.2.1 Exploit:...

CVE-2002-0779

FTP proxy server for Novell BorderManager 3.6 SP 1a allows remote attackers to cause a denial of service network connectivity loss via a connection to port 21 with a large amount of random data...

CVE-2002-1445

Cross-site scripting XSS vulnerability in CERN Proxy Server allows remote attackers to execute script as other users via a link to a non-existent page whose name contains the script, which is inserted into the resulting error page...

Microsoft Internet Explorer 5/6 / Microsoft ISA Server 2000 / Microsoft Proxy Server 2.0 Gopher Client - Remote Buffer Overflow

source: https://www.securityfocus.com/bid/4930/info Microsoft Internet Explorer, Proxy Server and ISA Server includes a gopher client. Reportedly, these clients are vulnerable to a buffer overflow condition. The vulnerability exists in the component that parses gopher replies. A malicious server ...

Microsoft Internet Explorer 56 Microsoft ISA Server 2000 Microsoft Proxy Server 2.0 Gopher Client - Remote Buffer Overflow

Microsoft Internet Explorer 56 Microsoft ISA Server 2000 Microsoft Proxy Server 2.0 Gopher Client - Remote Buffer Overflow source: https://www.securityfocus.com/bid/4930/info Microsoft Internet Explorer, Proxy Server and ISA Server includes a gopher client. Reportedly, these clients are vulnerabl...

CVE-2002-0779

The CVE-2002-0779 entry affects the FTP proxy server component of Novell BorderManager 3.6 SP1a. It describes a remote Denial of Service: an attacker can cause network connectivity loss by connecting to port 21 and sending a large amount of random data. The provided documents confirm the vulnerab...