8 matches found
EUVD-2009-4461
Malware in sbrugna...
EUVD-2016-1053
Malware in sbrugna...
SUSE CVE-2016-1000108
yaws before 2.0.4 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTPPROXY environment variable, which might allow remote attackers to redirect a CGI application's outbound...
CVE-2011-4350
Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request...
CVE-2011-4350
Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request...
CVE-2011-4350
Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request...
CVE-2009-0751
Yaws before 1.80 allows remote attackers to cause a denial of service memory consumption and crash via a request with a large number of headers...
CVE-2009-0751
Yaws before 1.80 allows remote attackers to cause a denial of service memory consumption and crash via a request with a large number of headers...