271 matches found
RED QUEEN Path Disclosure
RED QUEEN Path Disclosure Vuln. discovered by : r0t Date: 16 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/red-queen-path-disclosure.html vendor:http://www.randommouse.com/cgi-bin/rms/ product/about/aboutproduct.cgi?sku=REDQN &referer=hotscripts&creative=linkindexing affected...
Remote IIS 5.x and IIS 6.0 Server Name Spoof
Remote IIS 5.x and IIS 6.0 Server Name Spoof It is possible to remotely spoof the "SERVERNAME" Microsoft® Internet Information Server® 5.0, 5.1 and 6.0 server variable by doing a modified HTTP request. Thus potentially revealing sensitive ASP code through the IIS 500-100.asp error page, the spoof...
CVE-2002-1874
CVE-2002-1874 affects AstroCam 0.9-1-1 through 1.4.0 (astrocam.cgi). The vulnerability allows remote attackers to execute arbitrary commands by injecting shell metacharacters in an HTTP request, indicating a command-injection risk in the CGI handler. The description notes vendor clarification tha...
CVE-2004-2114
Stack-based and heap-based buffer overflows in ProxyNow! 2.75 and earlier allow remote attackers to execute arbitrary code via a GET request with a long ftp:// URL...
RHEL 2.1 / 3 : libxml (RHSA-2004:650)
An updated libxml package that fixes multiple buffer overflows is now available. Updated 24 May 2005 Multilib packages have been added to this advisory The libxml package contains a library for manipulating XML files. Multiple buffer overflow bugs have been found in libxml versions prior to 2.6.1...
KorWeblog 1.6.2 - Remote Directory Listing
source: https://www.securityfocus.com/bid/11744/info A vulnerability is reported in the KorWeblog software that may allow a remote user to disclose directory listings. The problem presents itself when a malicious user crafts an URI request containing directory traversal sequences. When properly...
CVE-2004-0313
Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long 1 GET argument or 2 method name...
Icecast <= 2.0.1 Win32 Remote Code Execution Exploit
Exploit for unknown platform in category remote exploits ==================================================== Icecast iceexec 127.0.0.1 Icecast nc 127.0.0.1 9999 Microsoft Windows XP Version 5.1.2600 C Copyright 1985-2001 Microsoft Corp. C:Icecast2 Win32...
CVE-2001-1186
Microsoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection...
PlaySMS <= 0.7 SQL Injection Exploit
Exploit for linux platform in category remote exploits ==================================== PlaySMS new Proto = "tcp", PeerAddr = $host, PeerPort = "80" ; unless $remote die "cannot connect to http daemon on $host" print "connected "; $remote-autoflush1; my $http = "GET /playsms/frleft.php HTTP/1...
Squid < 2.4.STABLE2 mkdir-only PUT Request DoS
Binary data 1524.prm...
Crob FTP Server 3.5.1 - Denial of Service
Crob FTP Server 3.5.1 - Denial of Service source: https://www.securityfocus.com/bid/9549/info A vulnerability has been reported in the Crob FTP server, which occurs due to a lack of validation of input from the user. By issuing a malformed request a malevolent user may be able to force the server...
lionmax software www file share pro 2.4x - Multiple Vulnerabilities (2)
// source: https://www.securityfocus.com/bid/9425/info WWW File Share Pro has been reported prone to multiple remote vulnerabilities. The first reported issue is that a remote attacker may employ the "upload" functionality of the vulnerable software to overwrite arbitrary files that are writable ...
IA WebMail Server 3.0/3.1 - GET Buffer Overrun
source: https://www.securityfocus.com/bid/8965/info IA WebMail Server is said to be prone to a remote buffer overrun that could allow an attacker to execute arbitrary code. The problem occurs due to insufficient bounds checking when handling GET requests. As a result, an attacker may be capable o...
Softrex Tornado WWW-Server 1.2 - Buffer Overflow
source: https://www.securityfocus.com/bid/7716/info A buffer overflow vulnerability has been reported for Tornado www-Server. The vulnerability exists when Tornado processes overly long HTTP requests. This will result in the server crashing. Although unconfirmed, it may be possible to exploit thi...
Softrex Tornado WWW-Server 1.2 - Buffer Overflow
Softrex Tornado WWW-Server 1.2 - Buffer Overflow source: https://www.securityfocus.com/bid/7716/info A buffer overflow vulnerability has been reported for Tornado www-Server. The vulnerability exists when Tornado processes overly long HTTP requests. This will result in the server crashing. Althou...
SudBox Boutique 1.2 - 'login.php' Authentication Bypass
source: https://www.securityfocus.com/bid/7651/info A vulnerability has been reported for SudBox Boutique. The problem occurs due to insufficient initialization of variables and may allow an unauthorized user to gain authenticate. Specifically, by making a malicious request to the login.php scrip...
EZ Publish 2.2.73.0 - Multiple Full Path Disclosure Vulnerabilities
EZ Publish 2.2.73.0 - Multiple Full Path Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/7349/info Several path disclosure vulnerabilities have been reported for eZ Publish. An attacker can exploit this vulnerability by making a HTTP request for any of the affected pages. Thi...
Guestbook 4.0 - Sensitive Information Disclosure
Guestbook 4.0 - Sensitive Information Disclosure source: https://www.securityfocus.com/bid/7320/info Guestbook has been reported prone to a sensitive information disclosure weakness. An attacker may disclose sensitive information regarding the Super Guestbook install by sending a HTTP request for...
Guestbook 4.0 - Sensitive Information Disclosure
source: https://www.securityfocus.com/bid/7320/info Guestbook has been reported prone to a sensitive information disclosure weakness. An attacker may disclose sensitive information regarding the Super Guestbook install by sending a HTTP request for the Guest Book passwd file. Administration...