11 matches found
EUVD-1999-1504
Malware in sbrugna...
Sambar pagecount Vulnerability - Active Check
By default, there is a pagecount script with Sambar Web Server located at http://sambarserver/session/pagecount. This counter writes its temporary files in c:\sambardirectory\tmp. It allows to overwrite any files on the filesystem since the SPDX-FileCopyrightText: 2001 StrongHoldNet...
CVE-2002-0737
Sambar web server before 5.2 beta 1 allows remote attackers to obtain source code of server-side scripts, or cause a denial of service resource exhaustion via DOS devices, using a URL that ends with a space and a null character...
CVE-2002-0737
CVE-2002-0737 affects the Sambar Web Server prior to 5.2 beta 1. An attacker can remotely obtain source code of server-side scripts or trigger a denial of service by exploiting a flaw in URL parsing when a URL ends with a space followed by a null byte. This occurs because the server misinterprets...
Sambar Server Multiple CGI Remote Overflow
It is possible to kill the Sambar web server 'server.exe' by sending it a long request like: /cgi-win/testcgi.exe?XXXX...X /cgi-win/cgitest.exe?XXXX...X /cgi-win/Pbcgi.exe?XXXXX...X or maybe in /cgi-bin/ An attacker may use this flaw to cause the server to crash continuously. %NASLMINLEVEL 70300 ...
CVE-2002-0737
Sambar web server before 5.2 beta 1 allows remote attackers to obtain source code of server-side scripts, or cause a denial of service resource exhaustion via DOS devices, using a URL that ends with a space and a null character...
Sambar Web Server vulnerable to sourcecode disclosure due to improper parsing of scripts
Overview Sambar Webserver displays script contents instead of interpreting them when the user adds certain characters to the end of the script URL. Description Sambar Webserver is designed to handle CGI requests by interpreting CGI scripts to produce output returned to the client. However, due to...
CVE-1999-1523
Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request...
CVE-1999-1523
CVE-1999-1523 concerns the Sambar Web Server 4.2.1. A buffer overflow in the HTTP GET handling allows a remote attacker to cause a denial of service and possibly execute arbitrary commands. The vulnerability is remote, with no authentication required, and is enabled by sending a long HTTP GET req...
Sambar Web Server pagecount exploit code
by default, there is a pagecount script with Sambar Web Server it's situated at http://sambarserver/session/pagecount counter writes it's temporary files at c:sambardirectorytmp if we'll write http://sambarserver/session/pagecount?page=index it will create file in Sambar temp directory with name...
CVE-1999-1523
Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request...