thomas software vulnerabilities
vulnerabilities.aspcode.net
Searching thomas software vulnerabilities
Multiple buffer overflows in Thomas Hauck Jana
overflows
|
Multiple
|
through
|
Server
|
Thomas
|
buffer
|
Hauck
|
Jana
|
Multiple buffer overflows in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP GET request with a long major version number, (2) an HTTP GET request to the HTTP proxy on port 3128 with a long major version number, (3) a long OK reply from a POP3 server, and (4) a long SMTP server response.
Thomas Hauck Jana Server 2.x through 2.2.1, and
through
|
Server
|
Thomas
|
Hauck
|
Jana
|
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of FTP PASV requests, which consumes all available FTP ports.
Thomas Hauck Jana Server 2.x through 2.2.1, and
through
|
Server
|
Thomas
|
Hauck
|
Jana
|
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, generates different responses for valid and invalid usernames, which allows remote attackers to identify valid users on the server.
Thomas Hauck Jana Server 2.x through 2.2.1, and
through
|
Server
|
Thomas
|
Hauck
|
Jana
|
Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing.
Thomas Hauck Jana Server 1.4.6 and earlier allo
Server
|
Thomas
|
Hauck
|
Jana
|
Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a (1) RETR or (2) DELE command to the POP3 server, which exceeds the array limits and allows a buffer overflow attack.
The LZW decoding in the gdImageCreateFromGifPtr
gdImageCreateFromGifPtr
|
function
|
graphics
|
decoding
|
Boutell
|
Thomas
|
draw
|
LZW
|
The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas Boutell graphics draw (GD) library (aka libgd) 2.0.33 allows remote attackers to cause a denial of service (CPU consumption) via malformed GIF data that causes an infinite loop.
** DISPUTED ** PHP remote file inclusion vulne
rep_par_rapport_racine
|
phpPrintAnalyzer
|
register_globals
|
vulnerability
|
attackers
|
arbitrary
|
inclusion
|
parameter
|
indexphp
|
DISPUTED
|
execute
|
enabled
|
Pequet
|
Thomas
|
remote
|
allows
|
file
|
code
|
PHP
|
via
|
URL
|
** DISPUTED ** PHP remote file inclusion vulnerability in index.php in Thomas Pequet phpPrintAnalyzer 1.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the rep_par_rapport_racine parameter. NOTE: this issue has been disputed by third party researchers, stating that the rep_par_rapport_racine variable is initialized before use.
PHP remote file inclusion vulnerability in comm
vulnerability
|
include_path
|
attackers
|
commonphp
|
parameter
|
arbitrary
|
inclusion
|
001-ALPH
|
execute
|
Thomas
|
allows
|
WTools
|
remote
|
code
|
LETE
|
file
|
PHP
|
via
|
URL
|
PHP remote file inclusion vulnerability in common.php in Thomas LETE WTools 0.0.1-ALPH allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter.
Thomas R. Pasawicz HyperBook Guestbook 1.30 sto
HyperBook
|
Guestbook
|
Pasawicz
|
Thomas
|
Thomas R. Pasawicz HyperBook Guestbook 1.30 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an admin password hash via a direct request for data/gbconfiguration.dat.
Software vulnerabilities results 1 to 10 of 10
Page:
1