25 matches found
EUVD-2001-1089
Malware in sbrugna...
EUVD-2001-1088
Malware in sbrugna...
EUVD-2004-0046
Malware in sbrugna...
SnapStream PVS Lite 2.0 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9375/info SnapStream PVS Lite is prone to a cross-site scripting vulnerability. An attacker could exploit this issue by enticing a victim user to follow a malicious link to a system hosting the software that contains...
Snapstream PVS 1.2 Plaintext Password Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3101/info Snapstream Personal Video Station is an application for Microsoft Windows which allows users to record video output on their PC and view it at a later time, locally or via an HTTP interface. The Snapstream PVS w...
Snapstream Personal Video Station 1.2 a PVS Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3100/info Snapstream Personal Video Station is an application for Microsoft Windows which allows users to record video output on their PC and view it at a later time, locally or via an HTTP interface. The Snapstream PVS w...
Snapstream PVS web directory traversal
It is possible to read arbitrary files on the remote Snapstream PVS server by prepending ../../ in front on the file name. It may also be possible to read ../ssd.ini which contains many information on the system base directory, usernames & passwords. SPDX-FileCopyrightText: 2002 Michel Arboi Some...
Snapstream PVS web directory traversal
It is possible to read arbitrary files on the remote Snapstream PVS server by prepending ../../ in front on the file name. It may also be possible to read ../ssd.ini which contains many informations on the system base directory, usernames & passwords. OpenVAS Vulnerability Test $Id:...
CVE-2004-0046
Cross-site scripting XSS vulnerability in SnapStream PVS LITE allows remote attackers to inject arbitrary web script or HTML via a GET request containing a terminating '"' double quote character...
CVE-2004-0046
Cross-site scripting XSS vulnerability in SnapStream PVS LITE allows remote attackers to inject arbitrary web script or HTML via a GET request containing a terminating '"' double quote character...
CVE-2004-0046
The CVE-2004-0046 entry describes an XSS vulnerability in SnapStream PVS LITE. The issue allows remote attackers to inject arbitrary web script or HTML via a GET request containing a terminating '"' character. Affected component: SnapStream PVS LITE web interface; root cause: improper handling of...
SnapStream PVS LITE Cross Site Scripting Vulnerabillity
Application: SnapStream PVS Vendor : http://www.snapstream.com Versions: LITE Platforms: Windows/Unix Bug: Cross Site Scripting Vulnerabillity Risk: Low Exploitation: Remote with browser Date: 6 Jan 2004 Author: Rafel Ivgi, The-Insider e-mail: [email protected] web: http://theinsider.deep-ice.c...
SnapStream PVS crossite scripting
No description provided...
SnapStream PVS Lite 2.0 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/9375/info SnapStream PVS Lite is prone to a cross-site scripting vulnerability. An attacker could exploit this issue by enticing a victim user to follow a malicious link to a system hosting the software that contains embedded HTML and script code. The...
CVE-2001-1108
CVE-2001-1108 refers to a directory traversal vulnerability in SnapStream PVS 1.2a, where remote attackers could read arbitrary files by injecting a .. sequence in the requested URL. OpenVAS entries describe exploiting by prepending ../../ to file names, potentially exposing files like ssd.ini th...
CVE-2001-1108
Directory traversal vulnerability in SnapStream PVS 1.2a allows remote attackers to read arbitrary files via a .. dot dot attack in the requested URL...
CVE-2001-1107
SnapStream PVS 1.2a stores its passwords in plaintext in the file SSD.ini, which could allow a remote attacker to gain privileges on the server...
CVE-2001-1107
CVE-2001-1107 affects SnapStream PVS 1.2a, where passwords are stored in plaintext in the SSD.ini file. This storage flaw could allow a remote attacker to gain privileges on the affected server. The available documents do not specify a patch or version that fixes the issue, nor provide exploit de...
Snapstream PVS vulnerability
Interrorem security announcement Interrorem - protecting business Software vulnerable: Snapstream PVS Vendor website: http://www.snapstream.com Workaround: Stop the snapstream server Software synopsis: Snapstream PVS is a Personal Video System for Windows Systems. It allows users to schedule...
CVE-2001-1107
SnapStream PVS 1.2a stores its passwords in plaintext in the file SSD.ini, which could allow a remote attacker to gain privileges on the server...