429 matches found
DEBIAN-CVE-2005-2693
cvsbug in CVS 1.12.12 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack...
CVE-2002-1593
CVE-2002-1593 affects the Apache httpd mod_dav component prior to version 2.0.42. The issue arises from improper handling of versioning hooks, which can trigger a null dereference in a child process and cause denial of service (CPU consumption) in a preforked multi-processing module. The risk is ...
CVE-2002-1593
moddav in Apache before 2.0.42 does not properly handle versioning hooks, which may allow remote attackers to kill a child process via a null dereference and cause a denial of service CPU consumption in a preforked multi-processing module...
Sun Java Applet 1.x - Invocation Version Specification
Sun Java Applet 1.x - Invocation Version Specification source: https://www.securityfocus.com/bid/11757/info Java provides support for dynamic and static versioning when loading applets in the Java plug-in. This means that during the invocation of an applet, a user can request that a particular...
Sun Java Applet 1.x - Invocation Version Specification
source: https://www.securityfocus.com/bid/11757/info Java provides support for dynamic and static versioning when loading applets in the Java plug-in. This means that during the invocation of an applet, a user can request that a particular version of a plug-in be used to run the applet. The featu...
DEBIAN-CVE-2004-0417
Integer overflow in the "Max-dotdot" CVS protocol command servemaxdotdot for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space...
CVE-2002-1593
moddav in Apache before 2.0.42 does not properly handle versioning hooks, which may allow remote attackers to kill a child process via a null dereference and cause a denial of service CPU consumption in a preforked multi-processing module...
Apache Httpd < 2.0.42 : mod_dav crash
A flaw was found in handling of versioning hooks in moddav. An attacker could send a carefully crafted request in such a way to cause the child process handling the connection to crash. This issue will only result in a denial of service where a threaded process model is in use...
CVE-2000-0951
A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote attackers to list directories in the web root via a Web Distributed Authoring and Versioning WebDAV search...