4 matches found
CVE-2005-4699
Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify command line arguments for the Whois program and obtain sensitive information via "--" style options in the qHost parameter...
CVE-2005-4698
Cross-site scripting XSS vulnerability in TellMe 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the 91 qIP IP or 2 qHost HOST parameters...
CVE-2005-4700
TellMe 1.2 and earlier, when the Server oServer and HEAD oHead options are enabled, allows remote attackers to obtain sensitive information via an invalid qHost parameter, which reveals the full pathname of the application in an fsockopen error message...
CVE-2005-4700
TellMe 1.2 and earlier, when the Server oServer and HEAD oHead options are enabled, allows remote attackers to obtain sensitive information via an invalid qHost parameter, which reveals the full pathname of the application in an fsockopen error message...