Mozilla Firefox < 3.0.13/3.5.2 Proxy Response DoS

Binary data 5115.prm...

Mozilla Firefox < 3.0.13/3.5.2 Proxy Response DoS

Binary data 801358.prm...

Virtualmin 3.703 - Multiple LocalRemote Vulnerabilities

Virtualmin 3.703 - Multiple LocalRemote Vulnerabilities Virtualmin Multiple Vulnerabilities by Filip Palian alertdocument.cookie; https://127.0.0.1:10000/virtual-server/link.cgi/%3Ci%3E%3Cscript%3Ealertdocument.cookie;%3C/script%3E 3 Anonymous proxy The attacker is able to use "Preview Website"...

Nwahy Dir 2.1 Change Admin Password

......................"; else /code - Works On : 1. Nwahy Articles v1 2. Nwahy scripts v1 3. Nwahy book v1 - Note : Path to Control Panel "/admincp/" . / errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; function Usage print "\n\n"; print...

Nwahy Dir 2.1 - Arbitrary Change Admin Password

Nwahy Dir 2.1 - Arbitrary Change Admin Password ......................"; else /code - Works On : 1. Nwahy Articles v1 2. Nwahy scripts v1 3. Nwahy book v1 - Note : Path to Control Panel "/admincp/" . / errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; function Usage pri...

Nwahy Dir 2.1 Arbitrary Change Admin Password Exploit

Exploit for unknown platform in category web applications ===================================================== Nwahy Dir 2.1 Arbitrary Change Admin Password Exploit ===================================================== ......................"; else /code - Works On : 1. Nwahy Articles v1 2. Nwah...

Mozilla Seamonkey Multiple Vulnerability Jun-09 (Linux)

The host is installed with Seamonkey, which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbseamonkeymultvulnjun09lin.nasl 4869 2016-12-29 11:01:45Z teissa $ Mozilla Seamonkey Multiple Vulnerabilities Jun-09 Linux Authors: Antu Sanadi Copyright: Copyright c 2009 Greenbone...

CVE-2009-2070

Opera displays a cached certificate for a 1 4xx or 2 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a...

LevelOne AMG-2000 multiple security vulnerabilities

Device can be exploited as a proxy to access wired network from wireless. Information leak...

libvirt_proxy 0.5.1 - Local Privilege Escalation

libvirtproxy 0.5.1 - Local Privilege Escalation / cve-2009-0036.c libvirtproxy http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0036 Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local...

DNS Tools PHP Digger Interactive Shell

\n"; arrayshift$argv; $host = $argv0; Start the interactive shell while1 fwriteSTDOUT, "shell: "; $cmd = trimfgetsSTDIN; if $cmd == "exit"die; else $attackurl = "http://".$host."/dig.php?ns=||".$cmd."||&host=mortal-team.net&queryt...

Squid代理缓存ICAP适配拒绝服务漏洞

BUGTRAQ ID: 34277 Squid是一个高效的Web缓存及代理程序，最初是为Unix平台开发的，现在也被移植到Linux和大多数的Unix类系统中，最新的Squid可以运行在Windows平台下。 Squid的ICAP实现在从ICAP服务器读取数据之前没有正确地检查body-pipes缓冲区大小。如果客户端没有从开放连接读取数据（如用户没有在IE中确认浏览器的下载消息对话框），squid就会一直从ICAP服务器将数据读取到body pipe，而已没有数据可传送给客户端。因此body pipes缓冲区会一直增加，squid可能会耗尽最多为用户下载大小的内存。 Squid Web...

Podcast Generator 1.1 - Remote Code Execution

!/usr/bin/php -q -d shortopentag=on $file.$ext $Ldeleted"; --------------------------- no check for admin rights, so now we can delete whatever file we want, with any exstension.. so let's delete config.php and make a rfesh new installation with a password set by us! the RCE is triggered in...

glFusion 1.1.2 SQL Injection

= 4.1 php.ini independent our site: http://retrogod.altervista.org/ software site: http://www.glfusion.org/ google dork: "Page created in" "seconds by glFusion" +RSS Vulnerability, sql injection in 'order' and 'direction' arguments: look ExecuteQueries function in...

Squid ICAP Adaptation DoS Vulnerability (Mar 2009)

Squid is prone to a remote denial of service DoS vulnerability because the proxy server fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized buffer. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced...

Ubuntu: Security Advisory (USN-519-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for squid FEDORA-2007-4170

Check for the Version of squid OpenVAS Vulnerability Test Fedora Update for squid FEDORA-2007-4170 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Fedora Update for squid FEDORA-2008-6045

Check for the Version of squid OpenVAS Vulnerability Test Fedora Update for squid FEDORA-2008-6045 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

CVE-2009-0036

Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to...

Squid Proxy Cache Denial of Service in request handling

Squid Proxy Cache Security Update Advisory SQUID-2009:1 Advisory ID: SQUID-2009:1 Date: February 02, 2009 Summary: Denial of service in request processing Affected versions: Squid 2.7 - 2.7.STABLE5, Squid 3.0 - 3.0.STABLE12, Squid 3.1 - 3.1.0.4 Fixed in version: Squid 2.7.STABLE6, 3.0.STABLE13,...