28 matches found
EUVD-2026-35090
A path handling issue in moddavfs in Apache 2.4.67 and earlier allows a WebDAV content author to directly manipulate trusted DAV property databases, potentially causing child process crashes. Users are recommended to upgrade to version 2.4.68, which fixes this issue...
CVE-2012-10062
A vulnerability in XAMPP, developed by Apache Friends, version 1.7.3's default WebDAV configuration allows remote authenticated attackers to upload and execute arbitrary PHP code. The WebDAV service, accessible via /webdav/, accepts HTTP PUT requests using default credentials. This permits...
CVE-2024-25660
The WebDAV service in Infinera TNMS Transcend Network Management System 19.10.3 allows a low-privileged remote attacker to conduct unauthorized file operations, because of execution with unnecessary privileges...
Exploit for Classic Buffer Overflow in Microsoft
EN GenWebDavIISExploit is a PoC tool demonstrating an expl...
CVE-2024-25660
The WebDAV service in Infinera TNMS Transcend Network Management System 19.10.3 allows a low-privileged remote attacker to conduct unauthorized file operations, because of execution with unnecessary privileges...
CVE-2024-25660
The WebDAV service in Infinera TNMS Transcend Network Management System 19.10.3 allows a low-privileged remote attacker to conduct unauthorized file operations, because of execution with unnecessary privileges...
PT-2024-21077 · Infinera · Infinera Tnms
Name of the Vulnerable Software and Affected Versions: Infinera TNMS version 19.10.3 Description: The WebDAV service in Infinera TNMS allows a low-privileged remote attacker to conduct unauthorized file operations because it executes with unnecessary privileges. Recommendations: For version...
Part of the middleware vulnerability summary-vulnerability warning-the black bar safety net
! Do the spectators for a long time, found that there has been no better middleware vulnerability of the summary of the article, just recently doing this to learn, this only summarizes a small portion of the middleware common vulnerabilities for learning reference, follow-up will complement the...
Exploit for Classic Buffer Overflow in Microsoft
CVE-2017-7269 Vulnerability ID: CVE-2017-7269 Disco...
Microsoft Security Advisory 4025685: Guidance for older platforms (XP / 2003) (EXPLODINGCAN)
The remote Windows host is missing a security update. It is, therefore, affected by one or more of the following vulnerabilities : - A remote code execution vulnerability exists in how the Remote Desktop Protocol RDP handles requests if the RDP server has Smart Card authentication enabled. An...
Microsoft IIS - WebDav 'ScStoragePathFromUrl' Remote Overflow (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule ' Microsoft IIS WebDav ScStoragePathFromUrl Overflow', 'Description' = %q Buffer overflow in the ScStoragePathFromUrl function in the WebDAV servic...
MS IIS 6.0 Buffer Overflow NSE Script
local nmap = require "nmap" local string = require "string" local shortport = require "shortport" local vulns = require "vulns" -- NSE Buffer Overflow vulnerability in IIS description = Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services IIS...
The vulnerability of the Internet Information Services network service package, which allows a perpetrator to execute arbitrary code
The vulnerability of the ScStoragePathFromUrl function in the WebDAV service of the Internet Information Services networking services is due to buffer overflow. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a long header that starts with "If: http://"...
CVE-2017-7269-IIS6 remote code execution vulnerability-reproduce-bug warning-the black bar safety net
Vulnerability description: Windows Server 2003R2 version IIS6. 0 the WebDAV service in the ScStoragePathFromUrl a function of the presence buffer overflow vulnerability, the remote attacker through to the“If: http://”at the beginning of a long header PROPFIND request, execute arbitrary code. The...
IIS 6.0 exposure remote code execution vulnerability CVE-2017-7269-vulnerability warning-the black bar safety net
Vulnerability description Microsoft has confirmed the vulnerabilities: Windows Server 2003R2 version IIS6. 0 the WebDAV service in the ScStoragePathFromUrl a function of the presence buffer overflow vulnerability, the remote attacker through to the“If: Since the opening the WebDAV service on the...
Microsoft IIS WebDav ScStoragePathFromUrl Overflow
Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services IIS 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: Authors Zhiniang Peng Chen Wu Dominic Chell firefart...
Microsoft Windows Server 2003 R2 IIS Buffer Overflow Vulnerability
Microsoft Windows Server 2003 R2 is a set of server operating system released by Microsoft.Internet Information Services IIS is a set of basic Internet services running on Microsoft Windows. A buffer overflow vulnerability exists in the ScStoragePathFromUrl function of the WebDAV service in IIS...
Buffer overflow
Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services IIS 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: http://" in a PROPFIND request, as exploited in the wild ...
CVE-2017-7269
Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services IIS 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: http://" in a PROPFIND request, as exploited in the wild ...
PT-2017-1605 · Microsoft · Iis 6.0 +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Server 2003 R2 Description: The issue is caused by a buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services IIS 6.0. This allows remote attackers to execute arbitrary code...