EUVD-2001-0391

Malware in sbrugna...

EUVD-2002-2391

Malware in sbrugna...

EUVD-2000-0763

Malware in sbrugna...

CVE-2002-2413

WebSite Pro 3.1.11.0 on Windows allows remote attackers to read script source code for files with extensions greater than 3 characters via a URL request that uses the equivalent 8.3 file name...

pro-selections.com Cross Site Scripting vulnerability OBB-3942764

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

WebSitePro Detection

Checks whether WebSitePro is present on the target system and if so, tries to figure out the version. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Publi...

OReilly WebSite 1.x/2.0 win-c-sample.exe Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2078/info O'Reilly WebSite Pro is a Windows 95/NT Web Server package. Versions 2.0 and below contained a vulnerable sample script, win-c-sample.exe, placed by default in /cgi-shl/ off the web root directory. This program ...

Website Pro <= 3.1.13.0 "Referer:" Remote Buffer Overflow Crash PoC

Exploit for windows platform in category dos / poc !/usr/bin/python Website Pro \n" %sys.argv0 sys.exit print "\n! Connecting to %s ..." %sys.argv1 sock = socketAFINET,SOCKSTREAM sock.connectsys.argv1,intsys.argv2 print "! Sending payload..." payload = "A" 996 payload += "\xEF\xBE\xAD\xBA" EAX...

CVE-2002-2413

WebSite Pro 3.1.11.0 on Windows is affected by CVE-2002-2413, where a remote attacker can read script source code for files with extensions longer than 3 characters by requesting a URL that uses the equivalent 8.3 file name. The vulnerability is described in multiple sources (RH and NVD entries) ...

O'Reilly WebSite Pro args.bat Arbitrary Command Execution

The CGI 'args.bat' and/or 'args.cmd' is installed. This CGI has a well known security flaw that lets an attacker upload arbitrary files on the remote web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid1146...

CVE-2002-2413

WebSite Pro 3.1.11.0 on Windows allows remote attackers to read script source code for files with extensions greater than 3 characters via a URL request that uses the equivalent 8.3 file name...

CVE-2001-0394

Remote manager service in Website Pro 3.0.37 allows remote attackers to cause a denial of service via a series of malformed HTTP requests to the /dyn directory...

CVE-2001-0394

The CVE-2001-0394 entry concerns Website Pro 3.0.37 where the Remote manager service is vulnerable to a denial-of-service via a sequence of malformed HTTP requests to the /dyn directory. The NVD entry lists a CVSS2 base score of 5.0 (Medium) with network attack vector, low attack complexity, no a...

CVE-1999-1180

CVE-1999-1180 affects O'Reilly WebSite 1.1e and Website Pro 2.0. The CGI scripts args.bat/args.cmd are vulnerable to remote arbitrary command execution via shell metacharacters in arguments. The NASL entry notes a known exploit path and states there is no known solution at this time; no additiona...

CVE-2001-0394

Remote manager service in Website Pro 3.0.37 allows remote attackers to cause a denial of service via a series of malformed HTTP requests to the /dyn directory...

def-2001-15: Website Pro Remote Manager DoS

====================================================================== Defcom Labs Advisory def-2001-15 Website Pro Remote Manager DoS Author: Peter Grьndl [email protected] Release Date: 2001-03-28 ======================================================================...

Очередная дырка в WebSite Pro

CGI-директории по умолчанию открыты на запись. В состав сервера входит программа, позволяющая загружать файлы на сервер. Кроме того, при определенном запросе сервер показывает путь к локальным файлам, что суммарно позволяет загрузить и выполнить любой файл на сервере...

WebServer Pro All Version Vulnerability

-- WebSite Pro 2.5.4/all versions Vulnerability -- March 15, 2001 Website Pro, all versions, reveals the web directory with a simple character similar to the past vulnerability but all have been fixed except this one. Example: www.target.com/:/ -this will reveal the exact location 403 Forbidden...

CVE-2000-0769

O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe...

CVE-2000-0769

O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe...