EUVD-2001-0456

Malware in sbrugna...

EUVD-2001-1138

Malware in sbrugna...

websweeper.com XSS vulnerability

Vulnerable URL: http://www.websweeper.com/liner/tank-liner/quote-attachment.php?shape=1"...

Baltimore Technologies WEBsweeper 4.0 DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2465/info Baltimore Technology WEBsweeper is subject to a denial of service condition. Submitting an unusually long HTTP request through WEBsweeper will cause the consumption of all available memory on the server where...

CVE-2005-4526

CVE-2005-4526 affects Clearswift MIMEsweeper For Web (WEBsweeper) versions 4.0–5.1. The vulnerability allows remote attackers to bypass content filtering by using a URL that does not contain a ".exe" extension but returns an executable file. The connected PT-Security entry notes the affected vers...

PT-2005-5208 · Clearswift · Clearswift Mimesweeper For Web

Name of the Vulnerable Software and Affected Versions: Clearswift MIMEsweeper For Web a.k.a. WEBsweeper versions 4.0 through 5.1 Description: The issue allows remote attackers to bypass filtering via a URL that does not include a .exe extension but returns an executable file. Recommendations: For...

Infinite HTTP Request DoS Vulnerability

It was possible to kill the web server by sending an invalid SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Infinite HTTP request

It was possible to kill the web server by sending an invalid 'infinite' HTTP request that never ends. A cracker may exploit this vulnerability to make your web server crash continually or even execute arbirtray code on your system. OpenVAS Vulnerability Test $Id: wwwinfiniterequestDoS.nasl 6053...

CVE-2001-1157

Baltimore Technologies WEBsweeper 4.0 and 4.02 are described as failing to properly filter Javascript from HTML pages, enabling remote bypass of the filter via (1) an extra leading

CVE-2001-1157

Baltimore Technologies WEBsweeper 4.0 and 4.02 does not properly filter Javascript from HTML pages, which could allow remote attackers to bypass the filtering via 1 an extra leading and one or more characters before the SCRIPT tag, or 2 tags using Unicode...

CVE-2001-1152

Baltimore Technologies WEBsweeper 4.02: A URL blacklist management vulnerability allows remote attackers to bypass restrictions and reach unauthorized web servers by tampering with the requested URL. Exploitation vectors include (1) //, (2) /SUBDIR/.. to access parent directory, (3) /./, or (4) U...

CVE-2001-1152

Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including 1 a // double slash, 2 a /SUBDIR/.. where the desired file is in the parentdir, 3 ...

Various problems in Baltimore WebSweeper URL filtering

Tuesday 4 September 2001 Various problems in Baltimore WebSweeper URL filtering ====================================================== Product Background ------------------ WEBSweeper is Baltimore Technologies' Web Content Security solution. It enables customers to implement Content Security...

CVE-2001-1152

Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including 1 a // double slash, 2 a /SUBDIR/.. where the desired file is in the parentdir, 3 ...

CVE-2001-1157

Baltimore Technologies WEBsweeper 4.0 and 4.02 does not properly filter Javascript from HTML pages, which could allow remote attackers to bypass the filtering via 1 an extra leading and one or more characters before the SCRIPT tag, or 2 tags using Unicode...

CVE-2001-0460

Websweeper 4.0 does not limit the length of certain HTTP headers, which allows remote attackers to cause a denial of service memory exhaustion via an extremely large HTTP Referrer: header...

CVE-2001-0460

Websweeper 4.0 is affected: it does not limit the length of certain HTTP headers, enabling a DoS via an extremely large Referrer header. OpenVAS entries corroborate a denial-of-service path by sending invalid HTTP requests, potentially crashing or destabilizing the server. The CVE details do not ...

CVE-2001-0460

Websweeper 4.0 does not limit the length of certain HTTP headers, which allows remote attackers to cause a denial of service memory exhaustion via an extremely large HTTP Referrer: header...

DoS против WebSweeper (Infinite HTTP Request)

возможный "Бесконечный" HTTP-запрос, что позволяет заблокировать всю доступную память сервера...

def-2001-10: Websweeper Infinite HTTP Request DoS

====================================================================== Defcom Labs Advisory def-2001-10 Websweeper Infinite HTTP Request DoS Author: Peter Grьndl [email protected] Release Date: 2001-03-08 ======================================================================...