313 matches found
httpd security, bug fix, and enhancement update
2.0.52-38.ent.0.1 - use oracle index page oracleindex.html - updated string and distro in specfile 2.0.52-38.ent - fix server version string 236419 2.0.52-37.ent - add security fix for CVE-2007-3847 250760 2.0.52-36.ent - add modversion, load in default httpd.conf 248696 2.0.52-35.ent - add...
HP Radia Integration Server Version Detection
Binary data 4279.prm...
Borland InterBase Services Manager Information
This module retrieves version of the services manager, version and implementation of the InterBase server from InterBase Services Manager. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Borlan...
SQL injection in phpWebThing 1.4.4
Vulnerable: phpWebThings 1.4.4 website : http://phpwebthings.org The bug in download.php ThE Exploit : http://www.target.com/download.php?file=|SQL ThE Error: You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near 'ord...
PPTP Service Detection
The remote host seems to be running a PPTP VPN service, this service allows remote users to connect to the internal network and play a trusted rule in it. This service should be protect with encrypted username & password combinations, and should be accessible only to trusted individuals. By defau...
FTPshell Server 3.38 - Remote Denial of Service
FTPshell Server 3.38 - Remote Denial of Service !/usr/bin/perl Usage: FTPShellFTPDOS.pl FTPShellFTPDOS.pl 127.0.0.1 hello moto FTPshell Server Version 3.38 Download: http://www.ftpshell.com/ use IO::Socket; use Win32; use strict; my$i = ""; my$socket = ""; for $i = 1; $i newPeerAddr = $ARGV0,...
[Full-disclosure] Denial of service vulnerability in FTPshell Server Version 3.38
Summary: Denial of service vulnerability in FTPshell Server Version 3.38 http://www.ftpshell.com/ Details: Logging into the FTP server successfully and then closing the connection without using the QUIT command 39 times will cause the ftpshelld.exe process will die. Vulnerable Versions: FTPshell...
Berlios gpsd gpsd_report() Function Format String
The remote host is running GPSD, a daemon which monitors a GPS device and publishes its data over the network. The remote version of this software is vulnerable to format string attack due to the way it uses the syslog call. An attacker may exploit this flaw to execute arbitrary code on the remot...
CVE-2004-1103
MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to gain sensitive information via the debug parameter, which reveals information such as the path to the web root and the web server version...
Access Point Detection via FTP Server Version (Linksys)
Binary data 1847.prm...
NNTP Server Type and Version
Binary data 1888.prm...
Access Point Detection via FTP Server Version
Binary data 1848.prm...
PT-2004-1077 · Openssh +3 · Openssh +4
Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 3.4p1 rsh-server-0.17 rsh-0.17 Description: The issue is related to a directory traversal vulnerability in the scp component of OpenSSH, which can be exploited by remote malicious servers to overwrite arbitrary files...
IBM Lotus Domino 67 - HTTP webadmin.nsf Directory Traversal
IBM Lotus Domino 67 - HTTP webadmin.nsf Directory Traversal source: https://www.securityfocus.com/bid/9900/info It has been reported that Lotus Domino may be prone to a directory traversal vulnerability that may allow a remote attacker to access information outside the server root directory. The...
Netscape Enterprise Server Default Files Present
Default files were found on the Netscape Enterprise Server. These files should be removed as they may help an attacker to guess the exact version of the Netscape Server that is running on this host. %NASLMINLEVEL 70300 This script was written by David Kyger See the Nessus Scripts License for...
[EXPL] Chindi DoS Exploit Code
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion In the US? Contact Beyond Security at our new California office housewarming rates on automated network vulnerability scanning. We also...
kf-1.2.txt
KF Web Server version 1.0.2 shows file and directory content .oO Overview Oo. KF Web Server version 1.0.2 shows file and directory content Discovered on 2002, July, 2nd Vendor: KeyFocus http://www.keyfocus.net/kfws/ KF Web Server 1.0.2 is a free personal web server available for Windows...
HTTP Server Type and Version
This plugin attempts to determine the type and the version of the remote web server. Copyright 2000 by Hendrik Scholz @@NOTE: The output of this plugin should not be changed Changes by Tenable: - Revised plugin title 10/08/10 - Removed use of deprecated functions 01/16/2018 - Fixed various regula...
CVE-1999-1260
mSQL Mini SQL 2.0.6 allows remote attackers to obtain sensitive server information such as logged users, database names, and server version via the ServerStats query...
D_Server_Version_3443_594
Detects EE SP2...