request software vulnerabilities
vulnerabilities.aspcode.net
Searching request software vulnerabilities
Quake 1 server responds to an initial UDP game
connection
|
attackers
|
amplifier
|
spoofing
|
responds
|
traffic
|
"Smurf"
|
request
|
another
|
initial
|
remote
|
server
|
allows
|
attack
|
amount
|
style
|
large
|
which
|
Quake
|
host
|
game
|
use
|
UDP
|
Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote attackers to use the server as an amplifier in a "Smurf" style attack on another host, by spoofing the connection request.
Buffer overflows in mpg321 before 0.2.9 allows
overflows
|
before
|
mpg321
|
Buffer
|
Buffer overflows in mpg321 before 0.2.9 allows local and possibly remote attackers to execute arbitrary code via a long URL to (1) a command line option, (2) an HTTP request, or (3) an FTP request.
Buffer overflow in PlanetDNS PlanetWeb 1.14 and
PlanetDNS
|
PlanetWeb
|
overflow
|
Buffer
|
Buffer overflow in PlanetDNS PlanetWeb 1.14 and earlier allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long URL or (2) a request with a long method name.
Cisco ONS15454 and ONS15327 running ONS before
attackers
|
ONS15327
|
ONS15454
|
service
|
running
|
denial
|
allows
|
before
|
Cisco
|
cause
|
ONS
|
Cisco ONS15454 and ONS15327 running ONS before 3.4 allows attackers to cause a denial of service (reset) via an HTTP request to the TCC, TCC+ or XTC, in which the request contains an invalid CORBA Interoperable Object Reference (IOR).
MidiCart PHP 1 allows remote attackers to (1) u
attackers
|
MidiCart
|
remote
|
allows
|
PHP
|
MidiCart PHP 1 allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php.
Buffer overflow in webfs before 1.17.1 allows r
overflow
|
before
|
Buffer
|
webfs
|
Buffer overflow in webfs before 1.17.1 allows remote attackers to execute arbitrary code via an HTTP request with a long Request-URI.
Buffer overflow in Avirt Soho 4.3 allows remote
attackers
|
overflow
|
service
|
remote
|
denial
|
Buffer
|
allows
|
Avirt
|
cause
|
Soho
|
Buffer overflow in Avirt Soho 4.3 allows remote attackers to cause a denial of service (crash) via (1) a large GET request to port 1080 or (2) a large GET request of % characters to port 8080.
Buffer overflow in the QFILEPATHINFO request ha
QFILEPATHINFO
|
overflow
|
handler
|
through
|
request
|
Buffer
|
Samba
|
30x
|
Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x through 3.0.7 may allow remote attackers to execute arbitrary code via a TRANSACT2_QFILEPATHINFO request with a small "maximum data bytes" value.
Tiny Server 1.1 allows remote attackers to caus
attackers
|
service
|
denial
|
remote
|
Server
|
allows
|
cause
|
Tiny
|
Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via malformed HTTP requests such as (1) a GET request without the HTTP version (HTTP/1.1), or (2) a request without GET or the HTTP version.
betaparticle blog (bp blog), posisbly before ve
betaparticle
|
blog
|
betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.
PHP-Nuke 7.6 and earlier allows remote attacker
information
|
sensitive
|
attackers
|
PHP-Nuke
|
earlier
|
request
|
direct
|
remote
|
allows
|
obtain
|
via
|
PHP-Nuke 7.6 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) ipban.php, (2) db.php, (3) lang-norwegian.php, (4) lang-indonesian.php, (5) lang-greek.php, (6) a request to Web_Links with the portuguese language (lang-portuguese.php), (7) a request to Web_Links with the indonesian language (lang-indonesian.php), (8) a request to the survey module with the indonesian language (lang-indonesian.php), (9) a request to the Reviews module with the portuguese language, or (10) a request to the Journal module with the portuguese language, which reveal the path in an error message.
1Two News 1.0 allows remote attackers to (1) de
attackers
|
remote
|
allows
|
1Two
|
News
|
1Two News 1.0 allows remote attackers to (1) delete images for new stories via a direct request to admin/delete.php or (2) upload arbitrary images via a direct request to admin/upload.php.
Memory leak in the request_key_auth_destroy fun
request_key_auth_destroy
|
request_key_auth
|
function
|
kernel
|
Memory
|
Linux
|
leak
|
Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.13 and earlier allows local users to cause a denial of service (memory consumption) via a large number of authorization token keys.
elog before 2.5.7 r1558-4 allows remote attacke
before
|
elog
|
elog before 2.5.7 r1558-4 allows remote attackers to cause a denial of service (infinite redirection) via a request with the fail parameter set to 1, which redirects to the same request.
Cross-site scripting (XSS) vulnerability in add
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in addRequest.php in Prayer Request Board (PRB) Beta 1 before Monday, March 20, 2006 allows remote attackers to inject arbitrary web script or HTML via the Request field.
ECI Telecom B-FOCuS Wireless 802.11b/g ADSL2+ R
configuration
|
demonstrated
|
/html/defs/
|
attackers
|
arbitrary
|
80211b/g
|
Wireless
|
Telecom
|
request
|
certain
|
B-FOCuS
|
related
|
Router
|
ADSL2+
|
remote
|
allows
|
files
|
file
|
read
|
HTTP
|
URI
|
ECI
|
via
|
ECI Telecom B-FOCuS Wireless 802.11b/g ADSL2+ Router allows remote attackers to read arbitrary files via a certain HTTP request, as demonstrated by a request for a router configuration file, related to the /html/defs/ URI.
Web Directory Pro allows remote attackers to (1
Directory
|
attackers
|
allows
|
remote
|
Web
|
Pro
|
Web Directory Pro allows remote attackers to (1) backup the database and obtain the backup via a direct request to admin/backup_db.php or (2) modify configuration via a direct request to admin/options.php.
Buffer overflow in Tftpd32 3.01 allows remote a
overflow
|
Tftpd32
|
Buffer
|
Buffer overflow in Tftpd32 3.01 allows remote attackers to cause a denial of service via a long GET or PUT request, which is not properly handled when the request is displayed in the title of the gauge window.
Pedro Lineu Orso chetcpasswd 2.3.3 provides a d
chetcpasswd
|
Lineu
|
Pedro
|
Orso
|
Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message when a request with a valid username fails, compared to a request with an invalid username, which allows remote attackers to determine valid usernames on the system.
ELinks before 0.11.3, when sending a POST reque
before
|
ELinks
|
ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy is defined for https.
Software vulnerabilities results 1 to 20 of 1587
Page:
1
2
3
4
5
...
80
►