2299 matches found
Microsoft Internet Explorer 455.55.0.1 - external.NavigateAndFind() Cross-Frame
Microsoft Internet Explorer 455.55.0.1 - external.NavigateAndFind Cross-Frame Microsoft Internet Explorer 4.0 for WfW/Windows 3.1/Windows 95/Windows NT 3/Windows NT 4,Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet Explorer 5.5,Internet Explorer 5.0.1,Internet...
symantec mail-gear 1.0 - Directory Traversal
source: https://www.securityfocus.com/bid/827/info Mail-Gear, a multi-purpose filtering email server, includes a webserver for remote administration and email retrieval. This webserver is vulnerable to the '../' directory traversal attack. By including the string '../' in the URL, remote attacker...
WWWBoard passwd.txt Authentication Credential Disclosure
The remote host is running WWWBoard, a bulletin board system written by Matt Wright. This board system comes with a password file passwd.txt installed next to the file 'wwwboard.html'. An attacker may obtain the contents of this file and decode the password to modify the remote www board...
MDaemon WebConfig HTTP Server URL Overflow DoS
It was possible to crash Webconfig which is used to configure MDaemon by sending the request : GET /aaaaa...aaa HTTP/1.0 This could allow a remote attacker to crash the web server, preventing the MDaemon server from being configured remotely. C Tenable Network Security, Inc. include"compat.inc";...
FTPGate Web Proxy Traversal Arbitrary File Access
It is possible to read arbitrary files on the remote server by prepending ../../ or ....\ in front of the file name. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid10091; scriptversion "1.24"; scriptcvsdate"Date: 2018/08/10 18:07:08"; scriptnameenglish:"FTPGate Web...
CVE-1999-0468
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component...
CVE-1999-0468
CVE-1999-0468: Internet Explorer 5.0 allows a remote server to read arbitrary files on the client’s file system via the Microsoft Scriptlet Component. Reported impact per CVSS suggests confidentiality loss (C:H) and overall HIGH severity (8.2) per CVSS v3.1, with network access and no user intera...
HP Remote Watch showdisk Remote Privilege Escalation
remwatch is installed and allows anyone to execute arbitrary commands. An attacker may issue shell commands as root by connecting to the remwatch daemon, and issue the command : ' 11T ; /bin/ksh'. C Tenable Network Security, Inc. include"compat.inc"; include"dataprotection.inc"; if description...
INN < 1.6 Multiple Vulnerabilities
According to its banner, the remote version of INN is older than version 1.6. A number of security holes have been found older versions of INN, some of which may allow arbitrary command execution. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10129;...
Microsoft FrontPage Extensions Check
The remote web server appears to be running with the FrontPage extensions. FrontPage allows remote web developers and administrators to modify web content from a remote location. While this is a fairly typical scenario on an internal local area network, the FrontPage extensions should not be...
iParty-DoS.txt
Date: Mon, 30 Nov 1998 21:46:52 -0600 From: HD Moore Reply-To: Bugtraq List To: [email protected] Subject: iParty can be shut down remotely -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iParty is an audio/text chat program for Windows. The iParty server listens on a specified port 6004 is...
msie.5.0.local.files.txt
Date: Tue, 30 Mar 1999 19:35:16 +0300 From: Georgi Guninski To: [email protected] Subject: IE 5.0 allows reading and sending local files to a remote server There is a security bug in Internet Explorer 5.0, which allows reading and sending local files to a remote server. The problem is a bug in...
Web Server /cgi-bin Shell Access
The remote web server has one of these shells installed in /cgi-bin : ash, bash, csh, ksh, sh, tcsh, zsh Leaving executable shells in the cgi-bin directory of a web server may allow an attacker to execute arbitrary commands on the target machine with the privileges of the HTTP daemon. %NASLMINLEV...
TCP/IP Fragmentation DoS (nestea)
It was possible to make the remote server crash using the 'nestea' attack. An attacker may use this flaw to shut down this server, thus preventing your network from working properly C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10148; scriptversion"1.35";...
CVE-1999-0468
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component...
WebCom datakommunikation Guestbook 0.1 - 'wguest.exe' Arbitrary File Access
source: https://www.securityfocus.com/bid/2024/info The freeware guestbook package from freeware.webcom.se provides a web-based guestbook feature, using CGI. Some versions of this guestbook undetermined at the time of writing are vulnerable to an attack allowing an intruder to retrieve the conten...
PT-1997-1076 · Nms · Formmail Cgi
Name of the Vulnerable Software and Affected Versions: FormMail CGI program affected versions not specified Description: The issue concerns the FormMail CGI program, which can be utilized by web servers other than the host server where the program resides. Recommendations: At the moment, there is...
Remote Server Administration Tools (RSAT) for Windows
None None...
2022_1OOB_RSATInstallCheck
RSATInstallCheck...