Lucene search
K

2171 matches found

OpenSSL
OpenSSL
added 2003/11/04 12:0 a.m.40 views

Vulnerability in OpenSSL CVE-2003-0851

A flaw in OpenSSL 0.9.6k only would cause certain ASN.1 sequences to trigger a large recursion. On platforms such as Windows this large recursion cannot be handled correctly and so the bug causes OpenSSL to crash. A remote attacker could exploit this flaw if they can send arbitrary ASN.1 sequence...

7.4AI score0.05407EPSS
Exploits0Affected Software1
exploitpack
exploitpack
added 2003/09/15 12:0 a.m.28 views

minihttp file-sharing for net 1.5 - Directory Traversal

minihttp file-sharing for net 1.5 - Directory Traversal source: https://www.securityfocus.com/bid/8619/info It has been reported that WebForums and File-Sharing for NET are prone to a remote directory traversal attack due to insufficient sanitization of user-supplied data. This vulnerability coul...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2003/09/08 12:0 a.m.19 views

Kukol E.V. HTTP FTP Server Suite 6.2 - File Disclosure

Kukol E.V. HTTP FTP Server Suite 6.2 - File Disclosure source: https://www.securityfocus.com/bid/8564/info The web server component of Kukol E.V. HTTP & FTP Server Suite is prone to a file disclosure vulnerability. Remote web users may use directory traversal sequences in requests to gain access ...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/07/18 12:0 a.m.20 views

Moby's Netsuite Directory Traversal

Directory traversal with escape sequences...

3.4AI score
Exploits0References1
Cvelist
Cvelist
added 2003/06/28 4:0 a.m.17 views

CVE-2003-0475

Directory traversal vulnerability in iWeb Server 2 allows remote attackers to read arbitrary files via an HTTP request containing URL-encoded .. sequences "%5c%2e%2e", a different vulnerability than CVE-2003-0474...

6.7AI score0.01607EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2003/06/25 3:52 p.m.7 views

Important: Red Hat Security Advisory: : Updated XFree86 packages provide security and bug fixes

XFree86 is an implementation of the X Window System providing the core graphical user interface and video drivers. Updated XFree86 packages for Red Hat Linux 7.3 are now available which include several security fixes, bug fixes, enhancements, and driver updates. Security fixes: - Xterm, provides ...

7.5CVSS6.2AI score0.03403EPSS
Exploits1References17
RedHat Linux
RedHat Linux
added 2003/06/18 10:49 a.m.4 views

security flaw

Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences...

5CVSS5.8AI score0.10872EPSS
Exploits7References4
exploitpack
exploitpack
added 2003/06/17 12:0 a.m.16 views

MyServer 0.4.10.4.2 - HTTP Server Directory Traversal

MyServer 0.4.10.4.2 - HTTP Server Directory Traversal source: https://www.securityfocus.com/bid/7944/info The MyServer HTTP server is prone to a file disclosure vulnerability. Encoded directory traversal sequences may be used to break out of the web root directory. Attackers may gain access to...

Exploits0
CVE
CVE
added 2003/06/11 4:0 a.m.36 views

CVE-2003-0417

CVE-2003-0417 describes a directory traversal vulnerability in Son hServer 0.2 that allows a remote attacker to read arbitrary files using modified dot-dot sequences (".|."). The issue affects the server component of Son hServer and is triggered via crafted requests that bypass normal path checks...

5CVSS6.7AI score0.02039EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2003/04/09 4:31 p.m.8 views

Low: Red Hat Security Advisory: : Updated httpd packages fix security vulnerabilities.

Updated httpd packages which fix a number of security issues are now available for Red Hat Linux 8.0 and 9. The Apache HTTP Web Server is a secure, efficient, and extensible Web server that provides HTTP services. A memory leak in Apache 2.0 through 2.0.44 allows remote attackers to cause a...

5CVSS5.9AI score0.86677EPSS
Exploits9References7
NVD
NVD
added 2003/04/02 5:0 a.m.26 views

CVE-2003-0083

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerabilit...

5CVSS7.5AI score0.17413EPSS
Exploits8References22
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.16 views

CVE-2002-0490

Instant Web Mail before 0.60 does not properly filter CR/LF sequences, which allows remote attackers to 1 execute arbitrary POP commands via the id parameter in message.php, or 2 modify certain mail message headers via numerous parameters in write.php...

7.5AI score0.02749EPSS
Exploits0References4
OSV
OSV
added 2003/04/02 5:0 a.m.9 views

CVE-2003-0083

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerabilit...

6.4AI score
Exploits0References24
OSV
OSV
added 2003/04/02 5:0 a.m.4 views

DEBIAN-CVE-2003-0083

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerabilit...

5CVSS7AI score0.17413EPSS
Exploits8References1
RedHat Linux
RedHat Linux
added 2003/03/28 1:43 p.m.9 views

security flaw

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerabilit...

5CVSS5.8AI score0.17413EPSS
Exploits8References4
Cvelist
Cvelist
added 2003/03/28 5:0 a.m.35 views

CVE-2003-0083

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerabilit...

7.7AI score0.17413EPSS
Exploits8References22
Debian CVE
Debian CVE
added 2003/03/28 5:0 a.m.44 views

CVE-2003-0083

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerabilit...

5CVSS6.4AI score0.17413EPSS
Exploits8
exploitpack
exploitpack
added 2003/03/21 12:0 a.m.17 views

Check Point FW-1 Syslog Daemon - Unfiltered Escape Sequence

Check Point FW-1 Syslog Daemon - Unfiltered Escape Sequence source: https://www.securityfocus.com/bid/7161/info An issue has been discovered in Check Point FW-1 syslog daemon when attempting to process a malicious, remotely supplied, syslog message. Specifically, some messages containing escape...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/03/21 12:0 a.m.28 views

Check Point FW-1 Syslog Daemon - Unfiltered Escape Sequence

source: https://www.securityfocus.com/bid/7161/info An issue has been discovered in Check Point FW-1 syslog daemon when attempting to process a malicious, remotely supplied, syslog message. Specifically, some messages containing escape sequences are not properly filtered out. This may result in...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2003/03/18 11:1 a.m.4 views

security flaw

Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences...

5CVSS5.8AI score0.10872EPSS
Exploits7References4
Rows per page
Query Builder