20 matches found
EUVD-2002-0295
Malware in sbrugna...
EUVD-2002-0294
Malware in sbrugna...
EUVD-2002-0320
Malware in sbrugna...
EUVD-2001-1557
Malware in sbrugna...
VulnCheck KEV: CVE-2001-1580
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string...
CVE-2001-1580
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string...
CVE-2001-1580
CVE-2001-1580 : A directory traversal vulnerability exists in ScriptEase viewcode.jse for NetWare 5.1 before 5.1 SP3, enabling remote attackers to read arbitrary files via ".." sequences in the query string. The vulnerability stems from insufficient input sanitization in the NetWare Web Server’s ...
CVE-2002-0323
comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL...
CVE-2002-0297
Buffer overflow in ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long URL in an HTTP request...
CVE-2002-0298
ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service crash via certain HTTP GET requests containing 1 a %2e%2e encoded dot-dot, 2 several /../ dot dot sequences, 3 a missing URI, or 4 several ../ in a URI that does not begin with a / slash character...
CVE-2002-0323
comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL...
CVE-2002-0297
The CVE-2002-0297 entry applies to ScriptEase MiniWeb Server 0.95, where a buffer overflow in URL handling during HTTP requests can lead to a denial of service and may allow arbitrary code execution. Impact is described as availability impact (DoS) with potential code execution, but exploitation ...
CVE-2002-0297
Buffer overflow in ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long URL in an HTTP request...
CVE-2002-0298
Summary: CVE-2002-0298 affects ScriptEase MiniWeb Server 0.95. Vulnerability: remotely trigger a denial of service (crash) via crafted HTTP GET requests that include (1) encoded dot-dot (%2e%2e), (2) multiple /../ sequences, (3) a missing URI, or (4) ..// in a URI that does not start with a slash...
CVE-2002-0323
The CVE-2002-0323 issue affects ScriptEase:WebServer . A vulnerability in how the target file is passed in the URL allows remote attackers to read arbitrary files, yielding potential partial confidentiality impact. The NVD entry lists a base score of 5.0 (Medium) with network access and no authen...
ScriptEase:WebServer Edition vulnerability
Program: ScriptEase:WebServer Edition Url: www.nombas.com Problem: Any user can read files on server using one of examle scripts: comment2.jse Systems affected: Linux, Novell Netware, Windows 9x/NT/2k Example: WindowsNovell Netware:...
Многочисленные ошибки в ScriptEase MiniWeb Server (multiple bugs)
Переполнения буфера, обратный путь в каталогах...
Four More ScriptEase MiniWeb Server v0.95 DoS Attacks
The following are four more Server Denial of Service Attacks against ScriptEase MiniWeb Server 0.95. These attacks do not make the server point to an invalid memory address like the previous post. I believe the first two attacks I describe are internal server problems due to either coding errors ...
ScriptEase MiniWeb Server DoS Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ScriptEase MiniWeb Server DoS Vulnerability Type: DoS, crashes Daemon Release Date: February 19, 2002 Product / Vendor: The ScriptEase MiniWeb Server, written entirely in ScriptEase, is being distributed free by Nombas. This server is not intended to...
CVE-2001-1580
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string...