Searching slash software vulnerabilities

Apache 1.3.20 on Windows servers allows remote

Apache |

Apache 1.3.20 on Windows servers allows remote attackers to bypass the default index page and list directory contents via a URL with a large number of / (slash) characters.


Trend Micro InterScan AppletTrap 2.0 does not p

AppletTrap | InterScan | modified | properly | certain | filter | Trend | Micro | such | ways | does | URLs | they | not |

Trend Micro InterScan AppletTrap 2.0 does not properly filter URLs when they are modified in certain ways such as (1) using a double slash (//) instead of a single slash, (2) URL-encoded characters, (3) requesting the IP address instead of the domain name, or (4) using a leading 0 in an octet of an IP address.


Info-ZIP UnZip 5.42 and earlier allows attacker

Info-ZIP | UnZip |

Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via filenames in the archive that begin with the '/' (slash) character.


Abyss Web Server 1.0.3 allows remote attackers

Server | Abyss | Web |

Abyss Web Server 1.0.3 allows remote attackers to list directory contents via an HTTP GET request that ends in a large number of / (slash) characters.


Unknown vulnerability in Slash 2.1.x and 2.2 th

vulnerability | through | Unknown | Slash | 21x |

Unknown vulnerability in Slash 2.1.x and 2.2 through 2.2.2, as used in Slashcode, allows remote authenticated users to gain access to arbitrary accounts.


Directory traversal vulnerability in BearShare

vulnerability | BearShare | Directory | traversal |

Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the "/" (forward slash) or "." (dot) characters.


Buffer overflow in smallftpd 0.99 allows local

smallftpd | overflow | Buffer |

Buffer overflow in smallftpd 0.99 allows local users to cause a denial of service (crash) via an FTP request with a large number of "/" (slash) characters.


The download_selection_recursive() function in


The download_selection_recursive() function in ftplist.c for IglooFTP 0.6.1 allows remote malicious FTP servers to overwrite arbitrary files via filenames that contain / (slash) characters.


The mget function in cmds.c for tnftp 20030825

function | tnftp | cmdsc | mget |

The mget function in cmds.c for tnftp Monday, August 25, 2003 allows remote FTP servers to overwrite arbitrary files via FTP responses containing file names with / (slash) characters.


EmuLive Server4 Commerce Edition Build 7560 all

Commerce | Edition | EmuLive | Server4 | Build |

EmuLive Server4 Commerce Edition Build 7560 allows remote attackers to bypass authentication for the remote administration feature via a URL that contains an extra leading / (slash).


Directory traversal vulnerability in Net2Soft F

vulnerability | attackers | arbitrary | traversal | Directory | Net2Soft | remote | create | Server | allows | Flash | files | read | via | FTP |

Directory traversal vulnerability in Net2Soft Flash FTP Server 1.0 allows remote attackers to read and create arbitrary files via a /.. (slash dot dot).


VocalTec VGW4/8 Gateway 8.0 allows remote attac

authentication | attackers | VocalTec | trailing | request | Gateway | homeasp | remote | allows | VGW4/8 | bypass | slash | HTTP | via |

VocalTec VGW4/8 Gateway 8.0 allows remote attackers to bypass authentication via an HTTP request to home.asp with a trailing slash (/).


Gattaca Server 2003 1.1.10.0 allows remote atta

Gattaca | Server |

Gattaca Server 2003 1.1.10.0 allows remote attackers to cause a denial of service (CPU consumption) via directory specifiers in the LANGUAGE parameter to (1) index.tmpl and (2) web.tmpl, such as (a) slash "/", (b) backslash "\", (c) dot ".",, (d) dot dot "..", and (e) internal slash "lang//en".


Pico Server (pServ) 3.2 and earlier allows remo

Server | Pico |

Pico Server (pServ) 3.2 and earlier allows remote attackers to execute arbitrary commands via a URL with multiple leading "/" (slash) characters and ".." sequences.


Perception LiteWeb allows remote attackers to b

Perception | attackers | controls | LiteWeb | leading | access | allows | remote | bypass | extra | files | via |

Perception LiteWeb allows remote attackers to bypass access controls for files via an extra leading / (slash) or leading \ (backslash) in the URL.


Directory traversal vulnerability in Pico Serve

vulnerability | Directory | traversal | Server | Pico |

Directory traversal vulnerability in Pico Server (pServ) 3.3 allows remote attackers to read arbitrary files and execute arbitrary commands via a /./ (slash dot slash) before each .. (dot dot) sequence in the URL, which results in an incorrect directory depth count.


NetworkActiv Web Server 3.5.15 allows remote at

NetworkActiv | Server | Web |

NetworkActiv Web Server 3.5.15 allows remote attackers to read script source code via a crafted URL with a "/" (forward slash) after the file extension.


Buffer overflow in the make_http_soap_request f

make_http_soap_request | function | overflow | before | Buffer | PHP |

Buffer overflow in the make_http_soap_request function in PHP before 5.2.2 has unknown impact and remote attack vectors, possibly related to "/" (slash) characters.


mod_access.c in lighttpd 1.4.15 ignores trailin

mod_accessc | lighttpd |

mod_access.c in lighttpd 1.4.15 ignores trailing / (slash) characters in the URL, which allows remote attackers to bypass url.access-deny settings.


Directory traversal vulnerability in the contai

contains_dot_dot | vulnerability | user-assisted | src/namesc | overwrite | Directory | attackers | arbitrary | traversal | function | certain | allows | remote | files | GNU | via | tar |

Directory traversal vulnerability in the contains_dot_dot function in src/names.c in GNU tar allows user-assisted remote attackers to overwrite arbitrary files via certain //.. (slash slash dot dot) sequences in directory symlinks in a TAR archive.


Software vulnerabilities results 1 to 20 of 89     
Page: 12345