Lucene search
K

257 matches found

Prion
Prion
added 2006/01/16 9:3 p.m.16 views

Directory traversal

Directory traversal vulnerability in Shanghai TopCMM 123 Flash Chat Server Software 5.1 allows attackers to create or overwrite arbitrary files on the server via ".." dot dot sequences in the username field...

5CVSS7.2AI score0.01625EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2005/07/14 4:0 a.m.54 views

CVE-2002-2036

Sun Ray Server Software (SRSS) 1.3 with Non-Smartcard Mobility (NSCM) enabled is affected. The issue allows remote attackers to log in as another user by running dtlogin on a system with XDMCP client support, indicating a network-exposed authentication bypass via XDMCP/X11 components. The core de...

7.5CVSS7AI score0.01532EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2005/06/18 12:0 a.m.25 views

JBoss application server information leak

Insuficcient request validation allows to obtain server installation, configuration and version information...

3AI score
Exploits0References1Affected Software1
Check Point Advisories
Check Point Advisories
added 2005/02/01 12:0 a.m.8 views

DHCP (CAN-2004-0899; CAN-2004-0900)

DHCP Dynamic Host Configuration Protocol is used to administrate IP address configuration. Clients request an IP address from a server that leases them addresses. Attacks on the DHCP protocol usually target a vulnerability in the server software used, by sending specially crafted DHCP packets...

10CVSS6.2AI score0.72567EPSS
Exploits0
NVD
NVD
added 2004/07/27 4:0 a.m.15 views

CVE-2004-0701

Sun Ray Server Software SRSS 1.3 and 2.0 for Solaris 2.6, 7 and 8 does not properly detect a smartcard removal when the card is quickly removed, reinserted, and removed again, which could cause a user session to stay logged in and allow local users to gain unauthorized access...

4.6CVSS6.5AI score0.00348EPSS
Exploits0References4
Cvelist
Cvelist
added 2004/07/21 4:0 a.m.18 views

CVE-2004-0701

Sun Ray Server Software SRSS 1.3 and 2.0 for Solaris 2.6, 7 and 8 does not properly detect a smartcard removal when the card is quickly removed, reinserted, and removed again, which could cause a user session to stay logged in and allow local users to gain unauthorized access...

6.5AI score0.00348EPSS
Exploits0References4
CVE
CVE
added 2004/07/21 4:0 a.m.58 views

CVE-2004-0701

The affected product is Sun Ray Server Software (SRSS) 1.3 and 2.0 running on Solaris 2.6, 7, or 8. The issue is that SRSS does not reliably detect a smartcard removal when the card is quickly removed, reinserted, and removed again, which can leave a user session logged in and allow local users t...

4.6CVSS6.9AI score0.00348EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2004/05/18 12:0 a.m.26 views

NetChat buffer overflow

Buffer overflow on oversized GET request to embedded HTTP server...

2.3AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2004/03/10 12:0 a.m.14 views

Epic Games Unreal Tournament Server 436.0 - Engine Remote Format String

Epic Games Unreal Tournament Server 436.0 - Engine Remote Format String source: https://www.securityfocus.com/bid/9840/info A format string vulnerability has been reported to exists in the Unreal Tournament server engine. This issue is due to a failure of the server application to properly saniti...

7.5AI score
Exploits0
NVD
NVD
added 2002/12/31 5:0 a.m.20 views

CVE-2002-2036

Sun Ray Server Software SRSS 1.3, when Non-Smartcard Mobility NSCM is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client...

7.5CVSS6.7AI score0.01532EPSS
Exploits0References3
Apache Httpd
Apache Httpd
added 2002/09/23 12:0 a.m.35 views

Apache Httpd < 1.3.27 : Buffer overflows in ab utility

Buffer overflows in the benchmarking utility ab could be exploited if ab is run against a malicious server...

7.5CVSS1.6AI score0.21421EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2002/07/09 12:0 a.m.37 views

Directory content leakage in KF Web Server

Invalid processing of 00 in URLs...

2.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2002/03/09 12:0 a.m.54 views

SECURITY.NNOV: Bypassing content filtering software

There are common methods allowing to bypass almost any content filtering software antiviral products, CVP firewalls, mail attachment filtering, etc. I believe multiple products are vulnerable. Contents: I. Bypassing attachment detection or invalid detection of attachment type. 1. Encoded filename...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2001/08/01 12:0 a.m.36 views

Multiple win32 servers vulnerable to DoS &#40;OS matter&#41;

Multiple win32 servers vulnerable to DoS OS matter AFFECTED SYSTEMS Windows 98 first edition with CONCON kernel patch by MicroSoft. Although this is an OS matter, here are some affected ftp server programs I have found : BisonFTP V4R1 Broker FTP Server 5.9.5.0 G6 FTP Server v2.15 AKA BulletProof...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2000/12/05 12:0 a.m.23 views

Дырка в WhoWhere Webmail &#40;comm.lycos.com, angelfire.com, eudoramail.com&#41;

Можно угадать имя файла с вложением на сервере...

1AI score
Exploits0References1
exploitpack
exploitpack
added 1999/11/04 12:0 a.m.11 views

Real Networks GameHouse dldisplay ActiveX control - Port Buffer Overflow (1)

Real Networks GameHouse dldisplay ActiveX control - Port Buffer Overflow 1 source: https://www.securityfocus.com/bid/767/info At installation, the Real Server software randomly selects an unused port as the remote administration port. This port is used by Real Server's remote web administration...

0.3AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.8 views

Host Integration Server.2006.Server.SP1

Host Integration Server.2006.Server.SP1...

0.4AI score
Exploits0
Rows per page
Query Builder