Lucene search
+L

1943 matches found

Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.24 views

Icecast list.cgi User-Agent XSS

Binary data 2136.prm...

4.3CVSS7.3AI score0.01235EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/26 12:0 a.m.231 views

Xitami testssi.ssi HTTP Header XSS

The remote Xitami server is distributed with a script for testing server-side includes, '/testssi.ssi'. This script is vulnerable to a cross-site scripting issue when sent a request with a malformed Host or User-Agent header. An attacker may exploit this flaw the steal the authentication...

5.4AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.18 views

SUSE-SA:2003:020: mutt

The remote host is missing the patch for the advisory SUSE-SA:2003:020 mutt. Mutt is a text-based Mail User Agent MUA. The IMAP-code of mutt is vulnerable to a buffer overflow that can be exploited by a malicious IMAP-server to crash mutt or even execute arbitrary code with the privileges of the...

7.5CVSS6AI score0.04494EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.27 views

RHEL 2.1 : elm (RHSA-2004:009)

Updated elm packages are now available that fix a buffer overflow vulnerability in the 'frm' command. Elm is a terminal mode email user agent. The frm command is provided as part of the Elm packages and gives a summary list of the sender and subject of selected messages in a mailbox or folder. A...

7.5CVSS6.2AI score0.03257EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2004/04/19 12:0 a.m.21 views

kphone.stun.txt

KPhone STUN DoS Malformed STUN Packets ------------------------------------------------------------------------ Article reference: http://www.securiteam.com/unixfocus/5PP0B1FCLY.html SUMMARY KPhone is "a SIP Session Initiation Protocol user agent for Linux, with which you can initiate VoIP Voice...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/03/10 12:0 a.m.86 views

[Full-Disclosure] Corsaire Security Advisory: Multiple vendor HTTP user agent cookie path traversal issue

-- Corsaire Security Advisory -- Title: Multiple vendor HTTP user agent cookie path traversal issue Date: 12.07.03 Application: Various Environment: Various Author: Martin O'Neal [email protected] Audience: Vendor notification Reference: c030712-001 -- Scope -- The aim of this document is...

7.5CVSS0.09768EPSS
Exploits5
CERT
CERT
added 2004/02/25 12:0 a.m.28 views

Apple Quicktime/Darwin Streaming Server fails to properly parse DESCRIBE requests

Overview Apple Quicktime/Darwin Streaming Server fails to properly parse DESCRIBE requests containing overly large User-Agent fields. This could allow an unauthenticated, remote attacker to cause a denial-of-service condition. Description Apple's QuickTime and Darwin Streaming Server is software...

5CVSS6AI score0.03474EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2004/02/23 12:0 a.m.26 views

Darwin Streaming Server denial-of-service vulnerability

An attacker can cause an assertion to trigger by sending a long User-Agent field in a request...

5CVSS6.3AI score0.03474EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2004/02/11 1:59 p.m.3 views

Important: Red Hat Security Advisory: : Updated mutt packages fix remotely-triggerable crash

New mutt packages that fix a remotely-triggerable crash in the menu drawing code are now available. Mutt is a text-mode mail user agent. A bug was found in the index menu code in versions of mutt. A remote attacker could send a carefully crafted mail message that can cause mutt to segfault and...

7.5CVSS6.1AI score0.05427EPSS
Exploits0References1
securityvulns
securityvulns
added 2003/11/03 12:0 a.m.54 views

SHOUTcast Server buffer overflow

buffer overflow on long User-Agent HTTP header in admin.cgi and in processing of internal administration protocol...

1.8AI score
Exploits0References3Affected Software1
exploitpack
exploitpack
added 2003/11/01 12:0 a.m.20 views

BRS Webweaver 1.06 - HTTPd User-Agent Remote Denial of Service

BRS Webweaver 1.06 - HTTPd User-Agent Remote Denial of Service // source: https://www.securityfocus.com/bid/8947/info It has been reported that BRS WebWeaver may be prone to a denial of service issue that may allow a remote attacker to cause the software to crash or hang. The issue presents itsel...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/11/01 12:0 a.m.22 views

BRS Webweaver 1.06 - HTTPd 'User-Agent' Remote Denial of Service

// source: https://www.securityfocus.com/bid/8947/info It has been reported that BRS WebWeaver may be prone to a denial of service issue that may allow a remote attacker to cause the software to crash or hang. The issue presents itself when the server receives a request containing a large string...

7AI score
Exploits0
NVD
NVD
added 2003/07/02 4:0 a.m.11 views

CVE-2003-0395

Ultimate PHP Board UPB 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in the User-Agent header, which is executed when the administrator executes adminiplog.php...

7.5CVSS7.5AI score0.02531EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2003/06/24 12:0 a.m.26 views

DSR-korean-elm.pl

DSR-korean-elm.pl - kokaninATdtors.net vs. /usr/ports/korean/elm offset, retaddr and shellcode is for my FreeBSD 4.7-RELEASE, YMMV reinventing the wheel, http://www.insecure.org/sploits/elm.curses.overflow.html shellcode by zillionATsafemode.org ko-elm-2.4h4.1 ELM Mail User Agent, patched for...

Exploits0
Cvelist
Cvelist
added 2003/06/10 4:0 a.m.17 views

CVE-2003-0395

Ultimate PHP Board UPB 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in the User-Agent header, which is executed when the administrator executes adminiplog.php...

7.5AI score0.02531EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2003/06/10 12:0 a.m.3 views

PT-2003-1586 · Upb · Ultimate Php Board

Name of the Vulnerable Software and Affected Versions: Ultimate PHP Board UPB version 1.9 Description: The issue allows remote attackers to execute arbitrary PHP code with administrator privileges. This is achieved via an HTTP request containing the code in the User-Agent header, which is execute...

7.5CVSS7.3AI score0.02531EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2003/05/29 12:0 a.m.19 views

Ultimate PHP Board admin_iplog.php Arbitrary Code Execution

The remote host is running Ultimate PHP Board UPB. There is a flaw in this version which may allow an attacker to execute arbitrary code on this host, by sending a malformed user-agent which contains PHP commands. Once the user-agent has been sent, it is stored in the logs. When the administrator...

7.5CVSS6.1AI score0.02531EPSS
Exploits0References1
securityvulns
securityvulns
added 2003/05/26 12:0 a.m.42 views

UPB: Discussion Board/Web-Site Takeover

=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::= topic: UPB: Discussion Board/Web-Site Takeover product: Ultimate PHP Board v1.9 latest vendor: www.myupb.com risk: high date: 05/24/2k3 discovered by: euronymous /F0KP advisory urls: http://f0kp.iplus.ru/bz/024.en.txt...

7.5AI score
Exploits0
OSV
OSV
added 2003/03/24 5:0 a.m.6 views

CVE-2003-0128

The tryuudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a malicious uuencoded UUE header, possibly triggering a heap-based buffer overflow...

8.1AI score
Exploits0References12
OSV
OSV
added 2003/03/24 5:0 a.m.5 views

DEBIAN-CVE-2003-0128

The tryuudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a malicious uuencoded UUE header, possibly triggering a heap-based buffer overflow...

5CVSS7.9AI score0.16522EPSS
Exploits1References1
Rows per page
Query Builder