994 matches found
robpoll-cgi-problem.txt
Software: Robpoll.cgi URL: http:// Platforms: Unix, NT Type: CGI, Change password by default robpoll.cgi Remote Possible Problem discovered by Nick: alt3kx Mail: [email protected] Webs: w w w . h e r t m x . o r g w w w . s 0 d . o r g w w w . r a z a - m e x i c a n a . o r g Summary:...
Big Brother filename extension vulnerability
versions affected: bb14h2 current and older exploit: bbd listens for incoming connections on port 1984. Using telnet or the bb client, it is possible to connect and create a filename with an arbitrary extension, as the extension is not rigorously checked. As this file is droped into a directory...
Дырка в Selena Sol Webbanner
Обратный путь в директориях позволяет получить любой файл с сервера...
Дыра в Quake 3 Arena
Со стороны сервера можно прочитать/записать любой файл на клиентской машине используя обратный путь в директориях...
CVE-1999-0455
CVE-1999-0455 concerns the ColdFusion "Expression Evaluator" sample app, where the exprcalc.cfm page improperly restricts server access. The vulnerability allows remote attackers to read or delete files on the server, via a misconfigured access control in the Expression Evaluator workflow. Docume...
symantec mail-gear 1.0 - Directory Traversal
source: https://www.securityfocus.com/bid/827/info Mail-Gear, a multi-purpose filtering email server, includes a webserver for remote administration and email retrieval. This webserver is vulnerable to the '../' directory traversal attack. By including the string '../' in the URL, remote attacker...
CGI City CC Whois 1.0 - MetaCharacter
source: https://www.securityfocus.com/bid/2000/info Whois scripts provide InterNIC lookup services via HTTP. The vulnerable scripts include versions of Matt's Whois and CGI City Whois. Older versions of these fail to filter metacharacters, allowing execution of arbitrary commands by embedding the...
squid -- possible abuse of cachemgr.cgi
The squid patches page notes: This patch adds access controls to the cachemgr.cgi script, preventing it from being abused to reach other servers than allowed in a local configuration file...
Web Server /cgi-bin Shell Access
The remote web server has one of these shells installed in /cgi-bin : ash, bash, csh, ksh, sh, tcsh, zsh Leaving executable shells in the cgi-bin directory of a web server may allow an attacker to execute arbitrary commands on the target machine with the privileges of the HTTP daemon. %NASLMINLEV...
CVE-1999-0408
Files created from interactive shell sessions in Cobalt RaQ microservers e.g. .bashhistory are world readable, and thus are accessible from the web server...
Greg Matthews - Classifieds.cgi 1.0 MetaCharacter
Greg Matthews - Classifieds.cgi 1.0 MetaCharacter source: https://www.securityfocus.com/bid/2020/info Classifieds.cgi is a perl script part of the classifieds package by Greg Matthews which provides simple classified ads to web sites. Due to improper input validation it can be used to read files ...
CVE-1999-0526
An X server's access control is disabled e.g. through an "xhost +" command and allows anyone to connect to the server...
PT-1997-1076 · Nms · Formmail Cgi
Name of the Vulnerable Software and Affected Versions: FormMail CGI program affected versions not specified Description: The issue concerns the FormMail CGI program, which can be utilized by web servers other than the host server where the program resides. Recommendations: At the moment, there is...
Microsoft Windows 95/Windows for Workgroups - 'smbclient' Directory Traversal
source: https://www.securityfocus.com/bid/1884/info Samba is a set of of programs that allow Windows® clients access to a Unix server's filespace and printers over NetBIOS. A directory traversal vulnerability exists in Microsoft's implementation of the SMB file and print sharing protocol for...