6227 matches found
CVE-1999-0368
Buffer overflows in wuarchive ftpd wu-ftpd and ProFTPD lead to remote root access, a.k.a. palmetto...
CVE-1999-0220
Attackers can do a denial of service of IRC by crashing the server...
RedHat Linux 5.1 Caldera OpenLinux Standard 1.2 - Mountd
RedHat Linux 5.1 Caldera OpenLinux Standard 1.2 - Mountd // source: https://www.securityfocus.com/bid/121/info NFS servers running certain implementations of mountd, primarily Linux systems. On some systems, the vulnerable NFS server is enabled by default. This vulnerability can be exploited even...
RedHat Linux 5.1 / Caldera OpenLinux Standard 1.2 - Mountd
// source: https://www.securityfocus.com/bid/121/info NFS servers running certain implementations of mountd, primarily Linux systems. On some systems, the vulnerable NFS server is enabled by default. This vulnerability can be exploited even if the NFS server does not share any file systems. This...
Apache 1.2.51.3.1 UnityMail 2.0 - MIME Header Denial of Service
Apache 1.2.51.3.1 UnityMail 2.0 - MIME Header Denial of Service source: https://www.securityfocus.com/bid/1760/info Apache Web Server and MessageMedia UnityMail are susceptible to a denial of service attack if a significant amount of 8000 byte MIME headers are sent. Both will crash and restart of...
SCO Open Server 5.0.4 - POP Server Buffer Overflow
SCO Open Server 5.0.4 - POP Server Buffer Overflow // source: https://www.securityfocus.com/bid/156/info A buffer overflow exists in the pop server shipped with Santa Cruz Operation, Inc's SCO Open Server. By presenting a buffer of sufficient length to the pop server, an attacker can overwrite th...
textcounter.pl 1.2 - Arbitrary Command Execution
textcounter.pl 1.2 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2265/info textcounter.pl is distributed through Matt's Scripts archive, and provides added features to httpd servers such as counters, guestbooks, and http cookie management. Due to insufficient checking of...
id Software Solaris Quake II 3.133.14 QuakeWorld 2.02.1 Quake 1.93.133.14 - Command Execution
id Software Solaris Quake II 3.133.14 QuakeWorld 2.02.1 Quake 1.93.133.14 - Command Execution // source: https://www.securityfocus.com/bid/90/info The Quake server has a feature where it allows administrators to remotely send commands to the Quake console with a password. However, it is possible ...
Info2www 1.0/1.1 - CGI Input Handling
source: https://www.securityfocus.com/bid/1995/info The info2www script allows HTTP access to information stored in GNU EMACS Info Nodes. This script fails to properly parse input and can be used to execute commands on the server with permissions of the web server, by passing commands as part of ...
PT-1997-1040 · Bisonware · Bisonware Ftp Server
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports. Recommendations: At the moment, there is n...
NCSA httpd-campas 1.2 - sample script
NCSA httpd-campas 1.2 - sample script source: https://www.securityfocus.com/bid/1975/info Campas is a sample CGI script shipped with some older versions of NCSA HTTPd, an obsolete web server package. The versions that included the script could not be determined as the server is no longer...
Dan Bernstein QMail 1.0 3 - RCPT Denial of Service (2)
Dan Bernstein QMail 1.0 3 - RCPT Denial of Service 2 // source: https://www.securityfocus.com/bid/2237/info qmail is an e-mail server package developed by Dan Bernstein. The qmail smtp server is subject to a denial of service. By specifying a large number of addresses in the recipient field RCPT,...
NCSA HTTPd 1.x - Remote Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/3158/info NCSA HTTPd is a free, open-source web server for nix systems. NCSA HTTPd versions 1.3 and earlier are prone to an exploitable buffer overflowin the username field which will allow malicious remote users to execute arbitrary code with the...
OReilly WebSite 1.x2.0 - win-c-sample.exe Buffer Overflow
OReilly WebSite 1.x2.0 - win-c-sample.exe Buffer Overflow source: https://www.securityfocus.com/bid/2078/info O'Reilly WebSite Pro is a Windows 95/NT Web Server package. Versions 2.0 and below contained a vulnerable sample script, win-c-sample.exe, placed by default in /cgi-shl/ off the web root...
OReilly WebSite 1.x/2.0 - 'win-c-sample.exe' Buffer Overflow
source: https://www.securityfocus.com/bid/2078/info O'Reilly WebSite Pro is a Windows 95/NT Web Server package. Versions 2.0 and below contained a vulnerable sample script, win-c-sample.exe, placed by default in /cgi-shl/ off the web root directory. This program is vulnerable to a buffer overflow...
Apache 1.1 / NCSA HTTPd 1.5.2 / Netscape Server 1.12/1.1/2.0 - a nph-test-cgi
Apache Replace with the hostname of a server running a web daemon near you...
CVE-1999-0175
The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server...
Microsoft IIS 1.0 Netscape Server 1.01.12 OReilly WebSite Professional 1.1b - .cmd .CMD Remote Command Execution
Microsoft IIS 1.0 Netscape Server 1.01.12 OReilly WebSite Professional 1.1b - .cmd .CMD Remote Command Execution IIS 1.0,Netscape Commerce Server 1.0/Communications Server 1.12,OReilly Software WebSite Professional 1.1 b BAT/.CMD Remote Command Execution source:...
NCSA HTTPd 1.x - Remote Buffer Overflow (2)
NCSA HTTPd 1.x - Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/3158/info NCSA HTTPd is a free, open-source web server for nix systems. NCSA HTTPd versions 1.3 and earlier are prone to an exploitable buffer overflowin the username field which will allow malicious remote use...
CVE-1999-0084
Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0...