Lucene search
+L

531 matches found

NVD
NVD
added 2001/08/31 4:0 a.m.17 views

CVE-2001-0967

Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt function, which makes it easier for an attacker to conduct brute force password guessing...

9.8CVSS9.6AI score0.00954EPSS
Exploits0References2
securityvulns
securityvulns
added 2001/05/17 12:0 a.m.72 views

Security Bulletin MS01-027

---------------------------------------------------------------------- Title: Flaws in Web Server Certificate Validation Could Enable Spoofing Date: 16 May 2001 Software: Internet Explorer Impact: Spoofing of trusted web site Bulletin: MS01-027 Microsoft encourages customers to review the...

0.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2001/05/13 12:0 a.m.32 views

MS01-025: Index Server Multiple Vulnerabilities (294472 / 296185)

The hotfix for the 'Malformed request to index server' problem has not been applied. This vulnerability can allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10668; scriptversion"1.51"; scriptcvsdate"Date:...

7.5CVSS6.1AI score0.14727EPSS
Exploits0References3
securityvulns
securityvulns
added 2001/04/24 12:0 a.m.33 views

WFTPD "Pro" 3.0 R4 Buffer Overflow

WFTP is the Win/NT FTP server by Alun Jones, "an author acknowledged as an expert in FTP and TCP/IP". This advisory pertains to "Professional" version 3.00 R4, which appears to be the current version. It can be downloaded from the author's site at http://www.wftpd.com/. WFTPD is released as...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2001/03/19 12:0 a.m.18 views

SWSoft ASPSeek 1.0 - s.cgi Remote Buffer Overflow

SWSoft ASPSeek 1.0 - s.cgi Remote Buffer Overflow source: https://www.securityfocus.com/bid/2492/info A buffer overflow in ASPSeek versions 1.0.0 through to 1.0.3 allows for arbitrary code execution with the privileges of the web server. The vulnerable script is s.cgi and the buffer overflow can ...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2001/03/15 12:0 a.m.32 views

WU-FTPD 2.4/2.5/2.6 / Trolltech ftpd 1.2 / ProFTPd 1.2 / BeroFTPD 1.3.4 FTP - glob Expansion

source: https://www.securityfocus.com/bid/2496/info Many FTP servers are vulnerable to a denial of service condition resulting from poor globbing algorithms and user resource usage limits. Globbing generates pathnames from file name patterns used by the shell, eg. wildcards denoted by and ?,...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/02/13 12:0 a.m.39 views

Commerce.cgi Directory Traversal

Introduction: Commerce.cgi can have your store's catalog up and running on the web in literally a couple of hours. The easy to use Store Manager will even allow you to add and remove products from your inventory right through your web browser. Best of all, it's free, vulnerable & open source. The...

1.5AI score
Exploits0
securityvulns
securityvulns
added 2001/01/24 12:0 a.m.30 views

def-2001-06: Easycom/Safecom 10/100 Multiple DoS

====================================================================== Defcom Labs Advisory def-2001-06 Easycom/Safecom 10/100 Multiple DoS Author: Peter Grьndl [email protected] Release Date: 2001-01-23 ======================================================================...

Exploits0
NVD
NVD
added 2001/01/09 5:0 a.m.13 views

CVE-2000-1148

The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain privileges on the server...

4.6CVSS6.6AI score0.00338EPSS
Exploits0References4
securityvulns
securityvulns
added 2000/11/29 12:0 a.m.35 views

IBM Net.Data Local Path Disclosure Vulnerability?

Not sure if this is exactly a new issue or not, but IBM's Net.Data package often used in conjuction with NetCommerce3 and db2www will disclose the local path of server files if fed improper requests. This software is in use on a variety of sites, including several online-shopping locales. Example...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2000/11/14 12:0 a.m.31 views

Vulnerabilites in SmallHTTP Server

403-security SECURITY ADVISORY Product: SmallHTTPServer Version: 2.01 Author: [email protected] Homepage: http://www.403-security.org 1st Problem: By default if user send request without file name specified http://host/subdirectory/ HTTPServer will look for index.html in that folder and if...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2000/09/03 12:0 a.m.43 views

Multiple QNX Voyager Issues

Tested Versions: QNX Voyager 2.01B Tested Distributions: QNX Demo Disk Modem v405 QNX Demo Disk Network v405 Distributor: QNX Software Systems Limited http://www.qnx.com Distributor Status: No response after 3 weeks Intro: QNX is a whole operating system aimed at the embedded computing market. Th...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2000/09/01 12:0 a.m.37 views

QSSL Voyager 2.0 1B - '.photon' Directory Information Disclosure

source: https://www.securityfocus.com/bid/1648/info The web server supplied with the QNX Voyager demo disk contains several vulnerabilities. First, Voyager will follow relative paths passed to it in requests. This includes ../ style paths, which will allow Voyager to serve pages outside of the...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/07/24 12:0 a.m.32 views

Проблемы в сервере Roxen

Используя нулевой символ 00 можно просматривать листинги директорий, получать содержимое исполняемых файлов и т.д...

0.7AI score
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2000/02/08 5:0 a.m.23 views

CVE-2000-0133

Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands...

6.9AI score0.08008EPSS
Exploits0References1
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.24 views

CVE-1999-0739

The codebrws.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files...

6.7AI score0.28742EPSS
Exploits0References1
Packet Storm
Packet Storm
added 1999/12/07 12:0 a.m.35 views

ftpd.dos.pl

Who has more free file descriptors & network ports, you or the ftp server ? ftpd's which limit connections to 1 per user@host or similar may have some defense against this, or if they don't support multiple data connections open at the same time. I suspect "many" is the number of ftpd's which are...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1999/10/01 12:0 a.m.21 views

True North Software Internet Anywhere Mail Server 2.3.x - Mail Server Multiple Buffer Overflow

True North Software Internet Anywhere Mail Server 2.3.x - Mail Server Multiple Buffer Overflow // source: https://www.securityfocus.com/bid/730/info // // True North Software's Internet Anywhere Mail Server has various weaknesses that could allow an attacker to remotely crash the server running...

0.3AI score
Exploits0
exploitpack
exploitpack
added 1997/04/23 12:0 a.m.18 views

NCSA HTTPd 1.x - Remote Buffer Overflow (1)

NCSA HTTPd 1.x - Remote Buffer Overflow 1 // source: https://www.securityfocus.com/bid/3158/info NCSA HTTPd is a free, open-source web server for nix systems. NCSA HTTPd versions 1.3 and earlier are prone to an exploitable buffer overflowin the username field which will allow malicious remote use...

1.2AI score
Exploits0
Exploit DB
Exploit DB
added 1996/03/01 12:0 a.m.32 views

Microsoft IIS 1.0 / Netscape Server 1.0/1.12 / OReilly WebSite Professional 1.1b - '.cmd' / '.CMD' Remote Command Execution

IIS 1.0,Netscape Commerce Server 1.0/Communications Server 1.12,OReilly Software WebSite Professional 1.1 b BAT/.CMD Remote Command Execution source: https://www.securityfocus.com/bid/2023/info Some web servers that allow batch files to be executed via CGI are vulnerable to an attack whereby an...

7AI score
Exploits0
Rows per page
Query Builder