17 matches found
EUVD-2002-0263
Malware in sbrugna...
WFTPD 3.25 Credential Disclosure
Exploit Title: WFTPD 3.25 - Unprotected Credential Storage Date: 04/01/2023 Exploit Author: golem445 Vendor Homepage: https://www.texis.com/ Tested on: Windows 10 CVE: CVE-2023-33263 Description: Usernames and hashes are stored in an openly viewable wftpd.ini configuration file within the host...
Thunderstone TEXIS 3.0 Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4035/info A vulnerability in TEXIS allows an attacker to view the full path to the web root. If the attacker submits an HTTP request for an invalid path, the server will return an error page containing the path to the web...
Thunderstone TEXIS 3.0 'texis.exe' Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7105/info Thunderstone TEXIS is prone to an information-disclosure vulnerability. Under certain circumstances, an attacker may pass command-line switches as URI parameters to the TEXIS executable. This action may cause th...
Non-Existent Page Physical Path Disclosure Vulnerability (HTTP)
The remote web server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2003 Michel Arboi SPDX-FileCopyrightText: Improved / extended code / detection routine since 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...
Thunderstone Software TEXIS Nonexistent File Request Path Disclosure
The Thunderstone Software TEXIS application running on the remote host is affected by an information disclosure vulnerability that allows an unauthenticated, remote attacker to obtain the full path of the web root directory by making a specially crafted request for a nonexistent file. %NASLMINLEV...
@(#)Mordred Labs advisory - Texis sensitive information leak
-----BEGIN PGP SIGNED MESSAGE----- //@ Mordred Security Labs advisory Release date: March 15, 2003 Name: Texis sensitive information leak Versions affected: all versions Risk: average Author: Sir Mordred [email protected], http://mslabs.iwebland.com I. Description: Thunderstone is an independent...
Thunderstone Software Texis Crafted Request Information Disclosure
The remote installation of Texis can be abused to disclose potentially sensitive information about the remote host, such as its internal IP address and the path to various components eg, cmd.exe. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
Thunderstone TEXIS 3.0 - texis.exe Information Disclosure
Thunderstone TEXIS 3.0 - texis.exe Information Disclosure source: https://www.securityfocus.com/bid/7105/info Thunderstone TEXIS is prone to an information-disclosure vulnerability. Under certain circumstances, an attacker may pass command-line switches as URI parameters to the TEXIS executable...
Thunderstone TEXIS 3.0 - 'texis.exe' Information Disclosure
source: https://www.securityfocus.com/bid/7105/info Thunderstone TEXIS is prone to an information-disclosure vulnerability. Under certain circumstances, an attacker may pass command-line switches as URI parameters to the TEXIS executable. This action may cause the vulnerable server to return...
CVE-2002-0266
Thunderstone Texis CGI script allows remote attackers to obtain the full path of the web root via a request for a nonexistent file, which generates an error message that includes the full pathname...
CVE-2002-0266
The connected documents confirm CVE-2002-0266 affects Thunderstone Texis CGI scripts, enabling unauthenticated remote disclosure of the web root path by requesting a nonexistent file, with error messages revealing the full pathname. No fix/version remediation details are provided in the supplied ...
CVE-2002-0266
Thunderstone Texis CGI script allows remote attackers to obtain the full path of the web root via a request for a nonexistent file, which generates an error message that includes the full pathname...
Thunderstone TEXIS 3.0 - Full Path Disclosure
Thunderstone TEXIS 3.0 - Full Path Disclosure source: https://www.securityfocus.com/bid/4035/info A vulnerability in TEXIS allows an attacker to view the full path to the web root. If the attacker submits an HTTP request for an invalid path, the server will return an error page containing the pat...
texis(CGI) Path Disclosure Vulnerability
Advisory: texisCGI Path Disclosure Vulnerability Application: Thunderstone's texisCGI Release Date: 02.05.02 Severity: Any user can send an invalid path to texisCGI causing it to reveal the full path to the webroot. In some cases texis will display system specific informationOS, processor type...
Thunderstone TEXIS 3.0 - Full Path Disclosure
source: https://www.securityfocus.com/bid/4035/info A vulnerability in TEXIS allows an attacker to view the full path to the web root. If the attacker submits an HTTP request for an invalid path, the server will return an error page containing the path to the web root. System information may also...
texis(CGI) Path Disclosure Vulnerability
Advisory: texisCGI Path Disclosure Vulnerability Application: Thunderstone's texisCGI Release Date: 02.05.02 Severity: Any user can send an invalid path to texisCGI causing it to reveal the full path to the webroot. In some cases texis will display system specific informationOS, processor type...