21 matches found
CVE-1999-0070
test-cgi program allows an attacker to list files on the server...
CVE-1999-0045
List of arbitrary files on Web host via nph-test-cgi script...
SUSE CVE-1999-0045
List of arbitrary files on Web host via nph-test-cgi script...
Barracuda Spam Firewall <= 3.5.11 - 'ldap_test.cgi' Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29340/info Barracuda Spam Firewall is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
Apache <= 1.1,NCSA httpd <= 1.5.2,Netscape Server 1.12/1.1/2.0 a nph-test-cgi Vulnerability
No description provided by source. Apache = 1.1,NCSA httpd = 1.5.2,Netscape Commerce Server 1.12/Communications Server 1.1/Enterprise Server 2.0 a nph-test-cgi Vulnerability source: http://www.securityfocus.com/bid/686/info Description as given by Josh Richards: A security hole exists in the...
Apache 0.8.x/1.0.x,NCSA httpd 1.x test-cgi Directory Listing Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2003/info NCSA HTTPd and comes with a CGI sample shell script, test-cgi, located by default in /cgi-bin. This script does not properly enclose an ECHO command in quotes, and as a result shell expansion of the character ca...
About CGI exploits-vulnerability warning-the black bar safety net
CGI vulnerability has always been easy to be people ignore the problem, but also is widespread, and shortly before the break PCWEEK LINUX hack is to use the CGI a vulnerability. I myself know of and from a foreign site, it seems that some of the CGI vulnerabilities to write some use of CGI in the...
CGI vulnerability highlights-vulnerability warning-the black bar safety net
CGI vulnerability highlights For the following list of CGI vulnerabilities,simply speaking,you can directly delete the program or rewrite the program to reach the safety of the mesh The Below is not completely reprinted from the green Forumvia a Supplement A. phf vulnerability The phf vulnerabili...
Common 2 7 CGI vulnerability methods of attack-vulnerability warning-the black bar safety net
A. phf vulnerability The phf vulnerability seems to be the most classic,almost all of the articles will be introduced,you can execute Server commands,such as display the/etc/passwd: lynx http://www.victim.com/cgi-bin/phf?Q...t%20/etc/passwd But we can still find it? II. php. cgi 2. 0beta10 or...
CVE-1999-0070
test-cgi program allows an attacker to list files on the server...
EUVD-1999-0045
List of arbitrary files on Web host via nph-test-cgi script...
CVE-1999-0045
CVE-1999-0045 concerns an information-disclosure flaw in the nph-test-cgi script used by some web servers, where an unauthenticated attacker can list directory contents. The Nessus plugin (NCDSA HTTPd nph-test-cgi Arbitrary Directory Listing) explains that the issue arises because the script does...
CVE-1999-0045
List of arbitrary files on Web host via nph-test-cgi script...
Test-Cgi Remote Command Execution (CVE-1999-0070)
The CGI program might be saved as the file "test.cgi" in the appropriate directory on a web server. Test-cgi program allows remote command execution. Remote attackers can exploit this vulnerability by passing a command as a parameter to the script which lists files on the server...
Multiple Vendor test-cgi Arbitrary File Access
The remote web server contains the 'test-cgi' test script, which is included by default with some web servers. The version of this script on the remote host fails to quote input to several environment variables, such as 'QUERYSTRING', before echoing it back as part of a shell script. An...
CVE-1999-0045
List of arbitrary files on Web host via nph-test-cgi script...
Apache 1.1 / NCSA HTTPd 1.5.2 / Netscape Server 1.12/1.1/2.0 - a nph-test-cgi
Apache Replace with the hostname of a server running a web daemon near you...
Apache 1.1 NCSA HTTPd 1.5.2 Netscape Server 1.121.12.0 - a nph-test-cgi
Apache 1.1 NCSA HTTPd 1.5.2 Netscape Server 1.121.12.0 - a nph-test-cgi Apache Replace with the hostname of a server running a web daemon near you...
CVE-1999-0070
test-cgi program allows an attacker to list files on the server...
Apache 0.8.x1.0.x NCSA HTTPd 1.x - test-cgi Directory Listing
Apache 0.8.x1.0.x NCSA HTTPd 1.x - test-cgi Directory Listing source: https://www.securityfocus.com/bid/2003/info NCSA HTTPd and comes with a CGI sample shell script, test-cgi, located by default in /cgi-bin. This script does not properly enclose an "ECHO" command in quotes, and as a result "shel...