119 matches found
Trend Micro OfficeScan client ActiveX control buffer overflow
Added: 02/21/2007 CVE: CVE-2007-0325 BID: 22585 OSVDB: 33040 Background Trend Micro OfficeScan is a centralized virus and security scan management system. Problem The OfficeScan Web-Deployment SetupINICtrl ActiveX control, which is vulnerable to buffer overflows in multiple methods, is...
AShop Shopping Cart Multiple XSS Vulnerabilities
Ashop Commerce provides a turn-key ecommerce solution with it's revolutionary online store building software. One of the worlds most easy to use web based administrations with award winning features allows the merchant to set up an online store capable of competing with the webs most powerful...
CVE-2005-0112
The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point AP 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the 1 config.bin 2 profile.wlp?PN=ggg or 3...
CVE-2004-0611
Web-Based Administration in Netgear FVS318 VPN Router allows remote attackers to cause a denial of service no new connections via a large number of open HTTP connections...
CVE-2004-0611
The CVE-2004-0611 issue affects Netgear FVS318 VPN Router. The Web-Based Administration component is vulnerable to a denial of service when an attacker opens a large number of HTTP connections, rendering the device unable to accept new connections (availability impact). The referenced documents d...
NETGEAR FVS318 Web-Based Administration DoS
NETGEAR FVS318 Web-Based Administration DoS http://www.kurczaba.com/securityadvisories/0406211.htm ------------------------------------------------------------- Vulnerability ID Number: 0406211 Overview: A vulnerability has been found in the Netgear FVS318 VPN Router Web-Based Administration...
Microsoft MN-500 Wireless Router Web-Based Administration DoS
Microsoft MN-500 Wireless Router Web-Based Administration DoS http://www.kurczaba.com/securityadvisories/0406213.htm ------------------------------------------------------------- Vulnerability ID Number: 0406213 Overview: A vulnerability has been found in the Microsoft MN-500 Wireless Router...
linksysDoS.txt
DigitalPranksters Security Advisory http://www.DigitalPranksters.com LinkSys EtherFast Router Denial of Service Attack Risk: Low Product: Linksys EtherFast Cable/DSL Firewall Router BEFSX41 Firmware 1.44.3 Product URL: http://www.linksys.com/products/product.asp?prid=433 Vendor Contacted: Septemb...
CVE-2003-0377
SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4, and possibly earlier versions, allows remote attackers to insert arbitrary SQL and execute code via certain variables, as demonstrated using the GroupName variable in SiteAdmin.ASP...
CVE-2003-0377
The CVE-2003-0377 entry concerns iisPROTECT (versions 2.2-r4 and earlier) and is triggered by an SQL injection in the web-based administration interface. The root cause is a vulnerability in how certain variables, notably GroupName on SiteAdmin.ASP, are processed, enabling remote attackers to inj...
CVE-2003-0377
SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4, and possibly earlier versions, allows remote attackers to insert arbitrary SQL and execute code via certain variables, as demonstrated using the GroupName variable in SiteAdmin.ASP...
ISC guestbook script injection vulnerability.
This advisory can be found at www.blacktigerz.org Date: 08.04.2003 Subject: ISC guestbook script injection vulnerability. Description: Free, easy to use asp powered guestbook. Main fetures are: web-based administration, bad word filtering. Vendor: http://www.isc-online.at Download:...
Orplex guestbook script injection.
This advisory and other useful files can be found at http://www.blacktigerz.org Date: 07.04.2003 Subject: Orplex guestbook script injection. Description: Free asp guestbook. Main fetures are:inserting smiles as icons; web-based administration; bad word filtering. Vendor: Orplex consulting inc...
SignHere guestbook vulnerability.
This advisory nd other useful files can be found at www.blacktigerz.org Subject: SignHere guestbook vulnerability. Description: Free, easy-to-use guestbook. Main features are: message text formatting bold text, urls etc.; inserting smiles as icons; web-based administration; email notifications...
ScreamingMedia SITEWare source code disclosure vulnerability
FS Advisory ID: FS-061201-18-SMSW Release Date: June 11, 2001 Product: ScreamingMedia SITEWare Vendor: ScreamingMedia Inc. http://www.screamingmedia.com Vendor Advisory: http://www.screamingmedia.com/security/sms1001.php Type: Source code disclosure vulnerability Severity: High Author: Mike Shema...
LinuxConf Detection
The remote host is running LinuxConf, a web-based administration tool for Linux. It is suggested to not allow anyone to connect to this service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10135; scriptversion"1.23"; scriptcvsdate"Date: 2019/11/22";...
Alt-N MDaemon 2.8.5 - WebConfig Overflow Denial of Service
Alt-N MDaemon 2.8.5 - WebConfig Overflow Denial of Service source: https://www.securityfocus.com/bid/820/info The Mdaemon mail server for Windows includes a small web server for web-based remote administration. This webserver is vulnerable due to an unchecked buffer that handles incoming GET...
Alt-N MDaemon 2.8.5 - WebConfig Overflow Denial of Service
source: https://www.securityfocus.com/bid/820/info The Mdaemon mail server for Windows includes a small web server for web-based remote administration. This webserver is vulnerable due to an unchecked buffer that handles incoming GET requests. An abnormally large URL sent to the WebConfig service...
Microsoft IIS 4 (Windows NT) - Remote Web-Based Administration
source: https://www.securityfocus.com/bid/189/info Web-based administration for IIS 4.0 is, by default, limited to the local loopback address, 127.0.0.1. In instances where IIS4.0 was installed as an upgrade to IIS 2.0 or 3.0, a legacy ISAPI DLL ISM.DLL is left in the /scripts/iisadmin directory...