636 matches found
Microsoft IIS UNC Mapped Virtual Host Vulnerability
Your IIS webserver allows the retrieval of ASP/HTR source code. SPDX-FileCopyrightText: 2001 [email protected] Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MUP overlong request kernel overflow Patch (Q311967)
Buffer overflow in Multiple UNC Provider MUP in Microsoft Windows operating systems allows local users to cause a denial of service or possibly gain SYSTEM privileges via a long UNC request. SPDX-FileCopyrightText: 2002 Michael Scheidell Some text descriptions might be excerpted from a referenced...
CVE-2005-1045
OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark...
CVE-2004-1077
Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and MetaFrame Presentation Server client for WinCE before 8.33 allows remote servers to create arbitrary shortcuts on the client via a full UNC path in the AppInStartmenu directive...
CVE-2005-1045
OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark...
CVE-2005-1045
OpenText FirstClass 8.0 client is affected by CVE-2005-1045 due to improper sanitization of strings before passing them to the Windows ShellExecute API. This allows a remote attacker to execute arbitrary commands via a UNC path in a bookmark. The vulnerability is network‑based with no authenticat...
OpenText FirstClass client code execution
Internet Bokkmark can point to UNC resource...
Microsoft IIS UNC Mapped Virtual Host Source Disclosure
Binary data 1583.prm...
CVE-2004-0480
Affected software: IBM Lotus Notes 6.0.3–6.5. Vulnerability: argument injection via a notes: URI that uses a UNC network share path to supply an alternate notes.ini for notes.exe, enabling remote code execution. Root cause (as described): insufficient argument filtering on the URI handler, allowi...
PT-2004-1599 · Ibm · Ibm Lotus Notes
Name of the Vulnerable Software and Affected Versions: IBM Lotus Notes versions 6.0.3 through 6.5 Description: The issue allows remote attackers to execute arbitrary code via a notes: URI that uses a UNC network share pathname to provide an alternate notes.ini configuration file to notes.exe. Thi...
TypSoft FTP Server DoS
DoS on UNC filename...
rpcHeap.txt
The Analysis of RPC Long Filename Heap Overflow AND a Way to Write Universal Heap Overflow of Windows Create: 2003-09-21 Author: flashsky flashsky1atsina.com The Analysis of RPC Long Filename Heap Overflow AND a Way to Write Universal Heap Overflow of Windows Author:FLASHSKY...
MS00-019: Microsoft IIS ISAPI Virtual Directory UNC Mapping ASP Source Disclosure (uncredentialed check)
It is possible to get the source code of the remote ASP scripts which are hosted on a mapped network share by appending '%5c' to the end of the request. ASP source code usually contains sensitive information such as logins and passwords. %NASLMINLEVEL 70300 [email protected] http://libpcap.net See...
Buffer overflow in Windows Multiple UNC Provider (MUP) service
Overview A buffer overflow in the Microsoft Windows Multiple UNC Provider MUP could allow a local user to execute code with system privileges. Description Microsoft Windows recognizes resources identified by the Uniform Naming Convention UNC. Requests for resources identified by UNC references ar...
CVE-2002-0151
Buffer overflow in Multiple UNC Provider MUP in Microsoft Windows operating systems allows local users to cause a denial of service or possibly gain SYSTEM privileges via a long UNC request...
MS02-017: MUP overlong request kernel overflow Patch (311967)
The remote version of Windows contains a flaw in Multiple UNC Provider MUP service that could allow a local user to execute arbitrary code on the remote host with SYSTEM privileges. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10944; scriptversion"1.42";...
Security Bulletin MS02-017 Q311967: Unchecked buffer in the Multiple UNC Provider Could Enable File Execution
Title: Q311967: Unchecked buffer in the Multiple UNC Provider Could Enable Code Execution Date: 04 April 2002 Software: - - Microsoft Windows NT 4.0 Workstation - - Microsoft Windows NT 4.0 Server - - Microsoft Windows NT 4.0 Server, Enterprise Edition - - Microsoft Windows NT 4 Terminal Server...
Buffer overflow in Windows NT/2000/XP
Buffer overflow on long request to MUP Multiple UNC Provider...
CVE-2002-0151
Buffer overflow in Multiple UNC Provider MUP in Microsoft Windows operating systems allows local users to cause a denial of service or possibly gain SYSTEM privileges via a long UNC request...
NSFOCUS SA2002-02 : Microsoft Windows MUP overlong request kernel overflow
NSFOCUS Security AdvisorySA2002-02 Topic: Microsoft Windows MUP overlong request kernel overflow Release Date: 2002-4-04 CVE CAN ID : CAN-2002-0151 Affected system: =================== Microsoft Windows NT 4.0 Microsoft Windows 2000 Microsoft Windows XP Impact: ========= NSFOCUS Security Team has...