2833 matches found
CVE-2004-0709
HP OpenView Select Access 5.0 through 6.0 does not correctly decode UTF-8 encoded unicode characters in a URL, which could allow remote attackers to bypass access restrictions...
CVE-2004-0709
CVE-2004-0709 affects HP OpenView Select Access 5.0–6.0 and refers to a URL handling flaw where UTF-8 encoded Unicode characters are not decoded correctly, potentially letting an attacker bypass access controls. The provided metrics indicate CVSSv2 base score 7.5 (HIGH) with network access, low a...
HP OpenView Select Access fails to properly decode UTF-8 encoded unicode characters in URLs
Overview There is a vulnerability in the way HP OpenView Select Access decodes UTF-8 encoded unicode characters in URLs. This vulnerability could allow a remote user to gain access to resources the user would otherwise be unauthorized to access. Description HP OpenView Select Access is a software...
Opera Browser 6.0 6 - URI Display Obfuscation
source: https://www.securityfocus.com/bid/9281/info A weakness has been reported in Opera that may allow attackers to obfuscate the URI for a visited page. The problem is said to occur when a URI that is designed to access a specific location with a supplied username, contains a specially crafted...
CVE-2002-0703
CVE-2002-0703 involves the perl-Digest-MD5 module and its interaction with Perl that can yield incorrect MD5 checksums for UTF-8 data, impairing data integrity verification. Mandrake’s MDKSA-2002:035 notes a UTF-8 handling bug in perl-Digest-MD5 and states that version 2.20 fixes the problem. The...
CVE-2002-0703
An interaction between the Perl MD5 module perl-Digest-MD5 and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the data...
CVE-2002-0703
An interaction between the Perl MD5 module perl-Digest-MD5 and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the data...
CVE-2002-0703
An interaction between the Perl MD5 module perl-Digest-MD5 and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the data...
CVE-2002-0703
An interaction between the Perl MD5 module perl-Digest-MD5 and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the data...
DEBIAN-CVE-2002-0703
An interaction between the Perl MD5 module perl-Digest-MD5 and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the data...
CVE-2001-1118
CVE-2001-1118 affects Roxen Web platform (Roxen 2.0 prior to 2.0.92 and Roxen 2.1 prior to 2.1.264). The issue is a failure to properly decode UTF-8, Mac, and ISO-2202 encoded URLs, enabling a remote attacker to execute arbitrary commands or view arbitrary files via an encoded URL. Affected compo...
CVE-2001-1118
A module in Roxen 2.0 before 2.0.92, and 2.1 before 2.1.264, does not properly decode UTF-8, Mac and ISO-2202 encoded URLs, which could allow a remote attacker to execute arbitrary commands or view arbitrary files via an encoded URL...
Outlook \r expliots - ripMIME fix.
A recent announcement of ripMIME 1.2.12 has been superceded with a new release which covers several issues as mentioned in [email protected]'s content-exploits analysis post. Specifically, "0 data poisoning" and "fake-end-of-line termination" due to fgets have been immediately covered. Issu...