navicopa webserver 3.0.1 (bof/sd) Multiple Vulnerabilities

No description provided by source. NaviCopa webserver 3.0.1 Multiple Vulnerabilities By: e.wiZz! Bosnian Idiot FTW! Mail: [email protected] Greetz goes to GYEZyou know who you are lol In the wild... Vendor site: http://www.navicopa.com/ Platforms: Windows OS only Info: Award Winning NaviCOPA is...

Sambar Server 5.1 Script Source Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4533/info An issue has been discovered in Sambar Server, which could allow a user to reveal the source code of script files. Submitting a request for a known script file along with a space and null character %00, will...

Microsoft IIS 2.0/3.0 Appended Dot Script Source Disclosure Vulnerability

source: http://www.securityfocus.com/bid/2074/info Microsoft Internet Information Server IIS is a popular web server, providing support for a variety of scripting languages, including ASP active server pages. IIS 2.0 and 3.0 suffer from an issue allowing a remote user to retrieve the source code...

(CGIHTTPServer): CGI script source code disclosure

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

NaviCopa webserver 3.0.1 (BOF/SD) Multiple Remote Vulnerabilities

No description provided by source. NaviCopa webserver 3.0.1 Multiple Vulnerabilities By: e.wiZz! Bosnian Idiot FTW! Mail: [email protected] Greetz goes to GYEZyou know who you are lol In the wild... Vendor site: http://www.navicopa.com/ Platforms: Windows OS only Info: Award Winning NaviCOPA is...

SoftArtisans FileUp(TM) viewsrc.asp remote script source disclosure exploit

Inge Henriksen Security Advisory - Full Disclosure Proof of Concept at http://ingehenriksen.blogspot.com/ Advisory Name: SoftArtisans FileUpTM viewsrc.asp remote script source disclosure exploit Tested and Confirmed Vulerable: SoftArtisans SAFileUpTM 5.0.14 Standard Severity: High Type: Script...

SoftArtisans SAFileUp 5.0.14 - 'viewsrc.asp' Script Source Disclosure

SoftArtisans FileUp viewsrc.asp remote script source disclosure exploit Advisory Name: SoftArtisans FileUpTM viewsrc.asp remote script source disclosure exploit Tested and Confirmed Vulerable: SoftArtisans SAFileUpTM 5.0.14 Standard Severity: High Type: Script source disclosure From where: Remote...

[SA19325] Xeneo Web Server Script Source Disclosure Vulnerability

TITLE: Xeneo Web Server Script Source Disclosure Vulnerability SECUNIA ADVISORY ID: SA19325 VERIFY ADVISORY: http://secunia.com/advisories/19325/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Xeneo Web Server 2.x http://secunia.com/product/69...

RaidenHTTPD Crafted Request Script Source Disclosure

The remote host is running RaidenHTTPD, a web server for Windows. According to its banner, the version of RaidenHTTPD installed on the remote Windows host fails to properly validate filename extensions in URLs. A remote attacker may be able to leverage this issue to disclose the source of scripts...

[SA19032] RaidenHTTPD Script Source Disclosure Vulnerability

TITLE: RaidenHTTPD Script Source Disclosure Vulnerability SECUNIA ADVISORY ID: SA19032 VERIFY ADVISORY: http://secunia.com/advisories/19032/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: RaidenHTTPD 1.x http://secunia.com/product/4614/...

GLSA-200502-21 : lighttpd: Script source disclosure

The remote host is affected by the vulnerability described in GLSA-200502-21 lighttpd: Script source disclosure lighttpd uses file extensions to determine which elements are programs that should be executed and which are static pages that should be sent as-is. By appending %00 to the filename, yo...

lighttpd: Script source disclosure

Background lighttpd is a small-footprint, fast, compliant and very flexible web-server which is optimized for high-performance environments. Description lighttpd uses file extensions to determine which elements are programs that should be executed and which are static pages that should be sent...

[Full-Disclosure] R7-0015: Multiple Vulnerabilities Apple QuickTime/Darwin Streaming Server

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rapid7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXpose, the world's most advanced vulnerability scanner. Linux and Windows 2000/XP versions are available now! Rapid7 Advisory R7-0015 Multiple Vulnerabilities Apple...

Sambar Server 5.1 - Script Source Disclosure

Sambar Server 5.1 - Script Source Disclosure source: https://www.securityfocus.com/bid/4533/info An issue has been discovered in Sambar Server, which could allow a user to reveal the source code of script files. Submitting a request for a known script file along with a space and null character %0...

Sambar Server 5.1 - Script Source Disclosure

source: https://www.securityfocus.com/bid/4533/info An issue has been discovered in Sambar Server, which could allow a user to reveal the source code of script files. Submitting a request for a known script file along with a space and null character %00, will successfully bypass the serverside UR...

Remote vulnerabilities in OmniHTTPd

== 403 Security Lab == www.403-security.org Advisory ID: 403-05-2001 ------------------------------------------------- Advisory Name: Remote vulnerabilities in OmniHTTPd Release Date: 26.05.2001 Application: OmniHTTPd Platform: Tested on Windows2000 only Author: Astral [email protected]...