Lucene search
+L

170 matches found

OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.19 views

Fedora Update for awstats FEDORA-2008-10938

Check for the Version of awstats OpenVAS Vulnerability Test Fedora Update for awstats FEDORA-2008-10938 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.3CVSS6.3AI score0.05597EPSS
Exploits1References2
Fedora
Fedora
added 2008/09/10 7:5 a.m.39 views

[SECURITY] Fedora 8 Update: awstats-6.8-2.fc8

Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contai ns, in graphical web pages. It can analyze a lot of web/wap/proxy servers lik...

4.3CVSS0.5AI score0.05597EPSS
Exploits1
seebug.org
seebug.org
added 2008/04/15 12:0 a.m.13 views

XM Easy Personal FTP Server 5.4.0 (XCWD) Denial of Service Exploit

No description provided by source. !/usr/bin/python XM Easy Personal FTP Server 5.4.0 XCWD DoS When admin looks at the server log, application crashes : Elhamdulillahi Rabbil-alemin! bt ./sploit.py + Saljemo zli bafer : + Now wait until the admin looks at server log : + Finito!...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2007/10/31 4:0 p.m.21 views

CVE-2002-2389

TheServer 1.74 web server stores server.ini under the web document root with insufficient access control, which allows remote attackers to obtain cleartext passwords and gain access to server log files...

6.8AI score0.01901EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2007/09/04 10:17 p.m.28 views

CVE-2007-4669

The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log firebird.log, aka CORE-1148...

4CVSS5.9AI score0.01198EPSS
Exploits0References1
Prion
Prion
added 2007/09/04 10:17 p.m.16 views

Code injection

The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log firebird.log, aka CORE-1148...

4CVSS6.4AI score0.01198EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2007/09/04 10:0 p.m.22 views

CVE-2007-4669

The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log firebird.log, aka CORE-1148...

6.1AI score0.01198EPSS
Exploits0References7
CVE
CVE
added 2007/09/04 10:0 p.m.54 views

CVE-2007-4669

The CVE-2007-4669 issue affects Firebird prior to 2.0.2: the Services API allows remote authenticated users (without SYSDBA) to read the server log (firebird.log) due to CORE-1148. Affected component is the Firebird server stack; vulnerability arises from insufficient access control around log ex...

4CVSS6.1AI score0.01198EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2007/01/25 12:0 a.m.27 views

CVE-2007-0482

cgi-bin/main in Sun Ray Server Software 2.0 and 3.0 before 20070123 allows local users to obtain the utadmin password by reading a web server's log file, or by conducting a different, unspecified local attack...

6.3AI score0.00347EPSS
Exploits0References7
NVD
NVD
added 2007/01/18 2:28 a.m.11 views

CVE-2007-0338

Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log...

7.5CVSS8.1AI score0.04705EPSS
Exploits0References3
Cvelist
Cvelist
added 2007/01/18 2:0 a.m.24 views

CVE-2007-0338

Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log...

8.1AI score0.04705EPSS
Exploits0References3
securityvulns
securityvulns
added 2006/08/02 12:0 a.m.42 views

VMWare ESX Server crossite scripting and password leak

Management Interface crossite scripting. Additionally, cleartext password is contained in session cookie and server log files...

1.6AI score
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/04/01 2:0 a.m.19 views

CVE-2005-4761

BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier log the Java command line at server startup, which might include sensitive information passwords or keyphrases in the server log file when the -D option is used...

6.3AI score0.00357EPSS
Exploits0References3
Prion
Prion
added 2006/01/25 11:7 p.m.14 views

Information disclosure

BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allows remote authenticated guest users to read the server log and obtain sensitive configuration information...

4CVSS6.5AI score0.01249EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2006/01/25 11:7 p.m.12 views

CVE-2006-0424

BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allows remote authenticated guest users to read the server log and obtain sensitive configuration information...

4CVSS6.1AI score0.01249EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/01/25 11:0 p.m.18 views

CVE-2006-0424

BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allows remote authenticated guest users to read the server log and obtain sensitive configuration information...

6.1AI score0.01249EPSS
Exploits0References7
CVE
CVE
added 2006/01/25 11:0 p.m.50 views

CVE-2006-0424

CVE-2006-0424 affects BEA WebLogic Server and WebLogic Express, specifically versions 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7. The vulnerability permits remote authenticated guest users to read the server log and obtain sensitive configuration information. The available connected so...

4CVSS6.1AI score0.01249EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2005/12/31 5:0 a.m.14 views

CVE-2005-4761

BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier log the Java command line at server startup, which might include sensitive information passwords or keyphrases in the server log file when the -D option is used...

1.2CVSS6.3AI score0.00357EPSS
Exploits0References3
OSV
OSV
added 2005/11/03 10:2 p.m.4 views

DEBIAN-CVE-2005-3487

Multiple buffer overflows in Scorched 3D 39.1 bf and earlier allow remote attackers to execute arbitrary code via various 1 GLConsole::addLine, 2 ServerCommon::sendString, 3 ServerCommon::serverLog functions, 4 a long command that is not properly handled in ComsMessageHandler.cpp when generating ...

7.5CVSS8AI score0.07722EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2005/08/24 12:0 a.m.21 views

BEA WebLogic 7.0/8.1 - Administration Console Cross-Site Scripting

source: https://www.securityfocus.com/bid/14657/info BEA WebLogic administration console is prone to cross-site scripting attacks. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may...

7.4AI score
Exploits0
Rows per page
Query Builder