531 matches found
CVE-2001-0967
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt function, which makes it easier for an attacker to conduct brute force password guessing...
Security Bulletin MS01-027
---------------------------------------------------------------------- Title: Flaws in Web Server Certificate Validation Could Enable Spoofing Date: 16 May 2001 Software: Internet Explorer Impact: Spoofing of trusted web site Bulletin: MS01-027 Microsoft encourages customers to review the...
MS01-025: Index Server Multiple Vulnerabilities (294472 / 296185)
The hotfix for the 'Malformed request to index server' problem has not been applied. This vulnerability can allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10668; scriptversion"1.51"; scriptcvsdate"Date:...
WFTPD "Pro" 3.0 R4 Buffer Overflow
WFTP is the Win/NT FTP server by Alun Jones, "an author acknowledged as an expert in FTP and TCP/IP". This advisory pertains to "Professional" version 3.00 R4, which appears to be the current version. It can be downloaded from the author's site at http://www.wftpd.com/. WFTPD is released as...
SWSoft ASPSeek 1.0 - s.cgi Remote Buffer Overflow
SWSoft ASPSeek 1.0 - s.cgi Remote Buffer Overflow source: https://www.securityfocus.com/bid/2492/info A buffer overflow in ASPSeek versions 1.0.0 through to 1.0.3 allows for arbitrary code execution with the privileges of the web server. The vulnerable script is s.cgi and the buffer overflow can ...
WU-FTPD 2.4/2.5/2.6 / Trolltech ftpd 1.2 / ProFTPd 1.2 / BeroFTPD 1.3.4 FTP - glob Expansion
source: https://www.securityfocus.com/bid/2496/info Many FTP servers are vulnerable to a denial of service condition resulting from poor globbing algorithms and user resource usage limits. Globbing generates pathnames from file name patterns used by the shell, eg. wildcards denoted by and ?,...
Commerce.cgi Directory Traversal
Introduction: Commerce.cgi can have your store's catalog up and running on the web in literally a couple of hours. The easy to use Store Manager will even allow you to add and remove products from your inventory right through your web browser. Best of all, it's free, vulnerable & open source. The...
def-2001-06: Easycom/Safecom 10/100 Multiple DoS
====================================================================== Defcom Labs Advisory def-2001-06 Easycom/Safecom 10/100 Multiple DoS Author: Peter Grьndl [email protected] Release Date: 2001-01-23 ======================================================================...
CVE-2000-1148
The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain privileges on the server...
IBM Net.Data Local Path Disclosure Vulnerability?
Not sure if this is exactly a new issue or not, but IBM's Net.Data package often used in conjuction with NetCommerce3 and db2www will disclose the local path of server files if fed improper requests. This software is in use on a variety of sites, including several online-shopping locales. Example...
Vulnerabilites in SmallHTTP Server
403-security SECURITY ADVISORY Product: SmallHTTPServer Version: 2.01 Author: [email protected] Homepage: http://www.403-security.org 1st Problem: By default if user send request without file name specified http://host/subdirectory/ HTTPServer will look for index.html in that folder and if...
Multiple QNX Voyager Issues
Tested Versions: QNX Voyager 2.01B Tested Distributions: QNX Demo Disk Modem v405 QNX Demo Disk Network v405 Distributor: QNX Software Systems Limited http://www.qnx.com Distributor Status: No response after 3 weeks Intro: QNX is a whole operating system aimed at the embedded computing market. Th...
QSSL Voyager 2.0 1B - '.photon' Directory Information Disclosure
source: https://www.securityfocus.com/bid/1648/info The web server supplied with the QNX Voyager demo disk contains several vulnerabilities. First, Voyager will follow relative paths passed to it in requests. This includes ../ style paths, which will allow Voyager to serve pages outside of the...
Проблемы в сервере Roxen
Используя нулевой символ 00 можно просматривать листинги директорий, получать содержимое исполняемых файлов и т.д...
CVE-2000-0133
Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands...
CVE-1999-0739
The codebrws.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files...
ftpd.dos.pl
Who has more free file descriptors & network ports, you or the ftp server ? ftpd's which limit connections to 1 per user@host or similar may have some defense against this, or if they don't support multiple data connections open at the same time. I suspect "many" is the number of ftpd's which are...
True North Software Internet Anywhere Mail Server 2.3.x - Mail Server Multiple Buffer Overflow
True North Software Internet Anywhere Mail Server 2.3.x - Mail Server Multiple Buffer Overflow // source: https://www.securityfocus.com/bid/730/info // // True North Software's Internet Anywhere Mail Server has various weaknesses that could allow an attacker to remotely crash the server running...
NCSA HTTPd 1.x - Remote Buffer Overflow (1)
NCSA HTTPd 1.x - Remote Buffer Overflow 1 // source: https://www.securityfocus.com/bid/3158/info NCSA HTTPd is a free, open-source web server for nix systems. NCSA HTTPd versions 1.3 and earlier are prone to an exploitable buffer overflowin the username field which will allow malicious remote use...
Microsoft IIS 1.0 / Netscape Server 1.0/1.12 / OReilly WebSite Professional 1.1b - '.cmd' / '.CMD' Remote Command Execution
IIS 1.0,Netscape Commerce Server 1.0/Communications Server 1.12,OReilly Software WebSite Professional 1.1 b BAT/.CMD Remote Command Execution source: https://www.securityfocus.com/bid/2023/info Some web servers that allow batch files to be executed via CGI are vulnerable to an attack whereby an...