SurgeLDAP 1.0 - Web Administration Authentication Bypass

SurgeLDAP 1.0 - Web Administration Authentication Bypass source: https://www.securityfocus.com/bid/10294/info SurgeLDAP is an LDAP server implementation for Microsoft Windows and various Unix operating systems. It includes a built-in web server to permit remote user access via HTTP. It has been...

SurgeLDAP 1.0 - 'User.cgi' Directory Traversal

source: https://www.securityfocus.com/bid/10103/info SurgeLDAP is prone to a directory traversal vulnerability in one of the scripts included with the built-in web administrative server, potentially resulting in disclosure of files. A remote attacker could exploit this issue to gain access to...

Rosiello Security's exploit for MDaemon

© Rosiello Security http://www.rosiello.org Bug found by hat-squad security. Background by securiteam.com MDaemon offers a full range of mail server functionality. MDaemon protects your users from spam and viruses, provides full security, includes seamless web access to your email via WorldClient...

Qualiteam X-Cart Multiple Script perl_binary Parameter Arbitrary Command Execution

The remote host is running Qualiteam X-Cart - a shopping cart software written in PHP. There is a bug in this software that could allow an attacker to execute arbitrary commands on the remote web server with the privileges of the web user. In addition to this, there are some flaws that could allo...

Leif M. Wright Web Blog 1.1 - Remote Command Execution

source: https://www.securityfocus.com/bid/9539/info Web Blog has been reported to be prone to a vulnerability that may permit remote attackers to execute arbitrary commands in the context of the hosting web server. This is due to insufficient sanitization of shell metacharacters from variables...

Reptile Web Server Reptile Web Server 20020105 - Denial of Service

source: https://www.securityfocus.com/bid/9482/info Reptile has been reported prone to a remote denial of service vulnerability. It has been reported that this issue exists because the affected server does not time out on incomplete requests. A remote attacker may exploit this vulnerability to de...

HotNews 0.x - 'config[incdir]' Remote File Inclusion

source: https://www.securityfocus.com/bid/9357/info HotNews is prone to multiple file include vulnerabilities. This will permit remote attackers to cause malicious PHP scripts from attacker-controlled servers to be included and subsequently executed in the context of the web server hosting the...

Alt-N MDaemon 6.x/WorldClient - Form2Raw Raw Message Handler Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/9317/info It has been reported that MDaemon/WorldClient mail server may be prone to a buffer overflow vulnerability when handling certain messages with a 'From' field of over 249 bytes. This issue may allow a remote attacker to gain unauthorized access...

directory traversal bug in Pserv 3.0b2

Donato Ferrante Application: PSERV - the small web server http://sourceforge.net/projects/pserv Version: 3.0 beta 2 Bug: directory traversal bug Author: Donato Ferrante e-mail: [email protected] web: www.autistici.org/fdonato...

Remote execution in My_eGallery

Product: MyeGallery Versions affected: all 3.1.1.g Website: http://lottasophie.sourceforge.net/index.php 1. Introduction --------------- MyeGallery is a very nice PostNuke module, which allows users to create and manipulate their own galleries on the web, plus offers various additional features...

Opera 7.22 - File Creation and Execution (WebServer)

Opera 7.22 - File Creation and Execution WebServer !/usr/bin/perl Sample code of "Opera 7 Arbitrary File Auto-Saved Vulnerability." This Exploit will run a webserver that will create and execute a batch file on the victim's computer when visiting this malicious server This perl script is a small...

OnlineArts DailyDose 1.1 - 'dose.pl' Remote Command Execution

source: https://www.securityfocus.com/bid/9000/info It has been reported that DailyDose may be prone to a remote command execution vulnerability due to insufficient sanitization of $temp variable in dose.pl script. An attacker may submit arbitrary commands that will be executed in the context of...

WinSyslog Interactive Syslog Server 4.21 - long Message Remote Denial of Service

WinSyslog Interactive Syslog Server 4.21 - long Message Remote Denial of Service source: https://www.securityfocus.com/bid/8821/info WinSyslog is prone to a remotely exploitable denial of service vulnerability. The issue exists in the Interactive Syslog Server specifically. This occurs when the...

EternalMart Mailing List Manager 1.32 - Remote File Inclusion

EternalMart Mailing List Manager 1.32 - Remote File Inclusion source: https://www.securityfocus.com/bid/8767/info EternalMart Mailing List Manager and Guestbook are prone to remote file-include vulnerabilities. Remote attackers may cause malicious PHP code to run on the webserver...

ProFTPd 1.2.9 rc2 - .ASCII File Remote Code Execution (1)

ProFTPd 1.2.9 rc2 - .ASCII File Remote Code Execution 1 / proftpd 1.2.7/1.2.9rc2 remote root exploit by bkbll bkbllcnhonker.net, 2003/10/1 for FTPProFTPDTranslateOverflow found by X-force happy birthday, China. this code is dirty, there are more beautiful exploits of proftpd for this vuln in the...

Real Server 7/8/9 Remote Root Exploit (Windows & Linux)

Exploit for multiple platform in category remote exploits ======================================================= Real Server 7/8/9 Remote Root Exploit Windows & Linux ======================================================= / / THCREALbad 0.4 - Wind0wZ & Linux remote root exploit / Exploit by:...

Microsoft URLScan 2.5RSA Security SecurID 5.0 - Configuration Enumeration

Microsoft URLScan 2.5RSA Security SecurID 5.0 - Configuration Enumeration source: https://www.securityfocus.com/bid/8419/info A weakness has been discovered in Microsoft URLScan and RSA Security SecurID when used in conjunction on a web server. The problem is said to occur due to the order in whi...

Valve Software Half-Life Server 3.1.1.0 - Multiplayer Request Buffer Overflow

Valve Software Half-Life Server 3.1.1.0 - Multiplayer Request Buffer Overflow // source: https://www.securityfocus.com/bid/8300/info // Half-Life servers are prone to a buffer overflow that may be exploited by a malicious remote client. The vulnerability occurs because the software fails to...

Asus AAM6330BIAAM6000EV ADSL Router - Information Disclosure

Asus AAM6330BIAAM6000EV ADSL Router - Information Disclosure source: https://www.securityfocus.com/bid/8183/info It has been reported that remote users may be able to obtain sensitive information from Asus ADSL routers. It is possible to request files from the built-in Web server that contain...

LBreakout2 2.x - Login Remote Format String

/ source: https://www.securityfocus.com/bid/8021/info It has been reported that lbreakout2 is vulnerable to a format string issue in the login component. This may result in an attacker executing arbitrary code on a vulnerable host. / / lbreakout2-2.5+: remote format string exploit. only...