newlines software vulnerabilities
vulnerabilities.aspcode.net
Searching newlines software vulnerabilities
ssdpsrv.exe in Windows ME allows remote attacke
ssdpsrvexe
|
Discovery
|
attackers
|
newlines
|
multiple
|
Protocol
|
sending
|
service
|
Windows
|
Simple
|
remote
|
allows
|
denial
|
cause
|
ssdpsrv.exe in Windows ME allows remote attackers to cause a denial of service by sending multiple newlines in a Simple Service Discovery Protocol (SSDP) message. NOTE: multiple replies to the original post state that the problem could not be reproduced.
Cross-site scripting (XSS) vulnerability in Apa
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1 allows remote attackers to execute arbitrary web script and steal cookies via a URL with encoded newlines followed by a request to a .jsp file whose name contains the script.
Off-by-one error in the xlog function of mountd
Off-by-one
|
function
|
package
|
mountd
|
error
|
utils
|
Linux
|
xlog
|
NFS
|
Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newlines.
GeoHttpServer, when configured to authenticate
authentication
|
GeoHttpServer
|
unauthorized
|
authenticate
|
configured
|
attackers
|
contains
|
%0a%0a
|
access
|
allows
|
remote
|
bypass
|
users
|
files
|
via
|
URL
|
GeoHttpServer, when configured to authenticate users, allows remote attackers to bypass authentication and access unauthorized files via a URL that contains %0a%0a (encoded newlines).
Lyris ListManager 5.0 through 8.9a allows remot
ListManager
|
characters
|
whitespace
|
attackers
|
parameter
|
through
|
columns
|
unusual
|
queries
|
orderby
|
allows
|
remote
|
"ORDER
|
Lyris
|
such
|
add
|
89a
|
BY"
|
via
|
SQL
|
Lyris ListManager 5.0 through 8.9a allows remote attackers to add "ORDER BY" columns to SQL queries via unusual whitespace characters in the orderby parameter, such as (1) newlines and (2) 0xFF (ASCII 255) characters, which are interpreted as whitespace.
D-Link DWL-G700AP with firmware 2.00 and 2.01 a
DWL-G700AP
|
firmware
|
D-Link
|
D-Link DWL-G700AP with firmware 2.00 and 2.01 allows remote attackers to cause a denial of service (CAMEO HTTP service crash) via a request composed of "GET" followed by a space and two newlines, possibly triggering the crash due to missing arguments.
Unspecified vulnerability in phpTodo before 0.8
vulnerability
|
Unspecified
|
phpTodo
|
before
|
Unspecified vulnerability in phpTodo before 0.8.1 allows remote attackers to have an unknown impact via newlines in regular expressions to (1) index.php, (2) feed.php, (3) prefs.php, and (4) todolist.php; and (5) classTodoItem.php and (6) phpTodoUser.php in libs/. NOTE: some of these details are obtained from third party information.
PHPIDS does not properly handle certain code co
user-assisted
|
demonstrated
|
containing
|
arbitrary
|
try/catch
|
attackers
|
newlines
|
properly
|
certain
|
PHPIDS
|
allows
|
remote
|
within
|
handle
|
inject
|
script
|
block
|
which
|
does
|
code
|
loop
|
web
|
not
|
PHPIDS does not properly handle certain code containing newlines, as demonstrated by a try/catch block within a loop, which allows user-assisted remote attackers to inject arbitrary web script.
Software vulnerabilities results 1 to 9 of 9
Page:
1