994 matches found
The use of TCP hidden channels to bypass the firewall-vulnerability warning-the black bar safety net
From:http://www. oioj. net/ my home ISP a free personal home page service, in the days that followed, I often passed 3 3 8 9 Port to log in, constantly to the IT patch patch the vulnerability, do some management and maintenance, own also grow a lot of knowledge. Recently delving intonetworksecuri...
phpWebSite 0.10.0 - module SQL Injection
phpWebSite 0.10.0 - module SQL Injection !/usr/bin/perl use LWP::Simple; $serv = $ARGV0; $path = $ARGV1; $name = $ARGV2; sub usage print "\nUsage: $0 server path username \n"; print "sever - URL\n"; print "path - path to index.php\n"; print "username - name register user\n\n"; exit ; sub work pri...
FileZilla 2.2.15 - FTP Client Hard-Coded Cipher Key
FileZilla 2.2.15 - FTP Client Hard-Coded Cipher Key // source: https://www.securityfocus.com/bid/14730/info FileZilla FTP client may allow local attackers to obtain user passwords and access remote servers. The application uses a hard-coded cipher key to decrypt the password, which is stored in a...
FileZilla 2.2.15 - FTP Client Hard-Coded Cipher Key
// source: https://www.securityfocus.com/bid/14730/info FileZilla FTP client may allow local attackers to obtain user passwords and access remote servers. The application uses a hard-coded cipher key to decrypt the password, which is stored in an XML file or the Windows Registry. This can allow t...
Microsoft IS error pages information leak
Request variable SERVERNAME controllable by client is used to validate server access...
Remote IIS 5.x and IIS 6.0 Server Name Spoof
Remote IIS 5.x and IIS 6.0 Server Name Spoof It is possible to remotely spoof the "SERVERNAME" Microsoft® Internet Information Server® 5.0, 5.1 and 6.0 server variable by doing a modified HTTP request. Thus potentially revealing sensitive ASP code through the IIS 500-100.asp error page, the spoof...
Vulnerability found in CPAINT Ajax Toolkit
I am the original author of the CPAINT Ajax Toolkit http://cpaint.sourceforge.net/. Last night we found a vulnerability affecting all versions of CPAINT prior to v1.3-SP which is the patched version of the software that can allow a user with malicious intent to execute server or ASP/PHP commands...
PPA 0.5.6 - ppa_root_path File Inclusion
PPA 0.5.6 - pparootpath File Inclusion source: https://www.securityfocus.com/bid/14209/info PPA is susceptible to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...
Pngren 2.0.1 - 'Kaiseki.cgi' Remote Command Execution
source: https://www.securityfocus.com/bid/14182/info pngren is prone to a remote arbitrary command execution vulnerability. Reportedly, this issue arises when the user-specified values are passed to the 'kaiseki.cgi' script. Due to this, an attacker can supply arbitrary commands and have them...
hostingController.txt
Cross-Site Scripting CSS in Hosting Controller All Version and hot fix it hehe ; [email protected] Ashiyane Security Team SegmentationFault Group iam sun-os hehe :P Greetz to : S4P0 - failed - Xsupr3mo - Status-x - Stealh Greetz to : berhooz - nima - ehsan - Mehrtash and...
artmedic_links5 remote file access exploit
You can read details of this vulnerability here: http://www.securityfocus.com/archive/1/367144 Very simple source of exploit, enjoy. / artmediclinks5 remote file access exploit Adam Simuntis [email protected] / include stdio.h include stdlib.h include arpa/inet.h include sys/types.h include sys/socket.h...
Coppermine Photo Gallery < 1.3.2 Multiple SQL Injections
According to its version number, the version of Coppermine Photo Gallery installed on the remote host suffers from multiple SQL injection vulnerabilities due to its failure to sanitize user-supplied cookie data before using it in SQL queries in the scripts 'include/functions.inc.php' as well as...
CERN httpd Double Slash Protected Webpage Bypass
The remote web server allows an attacker to access protected web pages by replacing slashes in the URL with '//' or '/./', which is a known problem in older versions of CERN web server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17230; scriptversion"1.19";...
News Server (NNTP) Anonymous Read / Write Access
The remote server seems open to remote users. Some people prefer open public NNTP servers to be able to read or post articles anonymously. Unwanted connections could waste your bandwidth or put you into legal trouble if a malicious person were to use your server to post abusive articles. Keep in...
Cisco ONS Multiple Remote Vulnerabilities (20040219-ONS)
According to its version number, the remote Cisco ONS platform has the following vulnerabilities : - The TFTP server allows unauthenticated access to TFTP GET and PUT commands. An attacker may exploit this flaw to upload or retrieve the system files of the remote ONS platform. - A denial of servi...
POP Password Changer (poppassd_pam) Arbitrary User Remote Password Modification
The remote host is running POP Password Changer, a server to change POP user's passwords. According to the version number, the remote software is vulnerable to an unauthorized access. An attacker, exploiting this flaw, will be able to change user's password. C Tenable Network Security, Inc...
CVE-2002-1510
xdm, with the authComplain variable set to false, allows arbitrary attackers to connect to the X server if the xdm auth directory does not exist...
GLSA-200402-04 : Gallery 1.4.1 and below remote exploit vulnerability
The remote host is affected by the vulnerability described in GLSA-200402-04 Gallery 1.4.1 and below remote exploit vulnerability Starting in the 1.3.1 release, Gallery includes code to simulate the behaviour of the PHP 'registerglobals' variable in environments where that setting is disabled. It...
QuiXplorer directory traversal
Title: QuiXplorer directory traversal Affects: = QuiXplorer 2.3 Effect: file disclosure, web server's user read access Id: cbsa-0003 Release Date: 2004 08 14 Author: Cyrille Barthelemy [email protected] -- 1. Introduction ------------------ From QuiXplorer documentation : "QuiXplorer is a...
APC PowerChute DoS
It's possible to prevent access to server or agent...