漏洞类别:SUSE漏洞等级: 漏洞信息 Suse has released security update for mozillafirefox, mozilla-nss to fix the vulnerabilities. Affected Products: openSUSE 13.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which …
漏洞类别:Web server漏洞等级: 漏洞信息 Apache Web Server is a freely available, open-source, software package developed and actively maintained by the Apache Software Foundation. The Apache Web Server is a robust, highly configurable, scalable Web server with high deployme…
漏洞类别:Web server漏洞等级: 漏洞信息 iPlanet Web Server, a high performance, highly customizable, enterprise-based Web server, is the Web Server package distributed by the Sun Microsystems/Netscape Alliance. iPlanet Web Server contains a problem in the software that coul…
漏洞类别:Web server漏洞等级: 漏洞信息 MP3Mystic is a Web server designed to serve MP3 files via any browser. MP3Mystic is provided by Jason Rahaim of Mp3Mystic.com. Remote users can gain read access to the directories where MP3Mystic Server has been installed. Through the…
漏洞类别:Web server漏洞等级: 漏洞信息 Netscape Enterprise Server is industrial-strength Web server software that enables organizations to publish content and deploy network-centric applications. Netscape Enterprise Server Version 3.6 contains a denial Of service due to a …
漏洞类别:Web server漏洞等级: 漏洞信息 When loading an executable CGI program, Microsoft Internet Information Server (IIS) decodes the CGI filename twice. First, IIS checks the CGI filename to see if it's an executable file. (For example, IIS might do a suffix check-up to …
漏洞类别:Web server漏洞等级: 漏洞信息 Requesting a malformed URL containing numerous escaped characters will cause Microsoft IIS performance to dramatically decrease until the URL has been processed. 漏洞危害 Note: To avoid causing a denial of service on your server, we don't…
漏洞类别:Web server漏洞等级: 漏洞信息 IBM HTTP Server powered by Apache is based on the Apache HTTP Server available for multiple platforms. IBM HTTP Server on Windows may be susceptible to "named pipe squatting attacks" from attackers with access to the web server operat…
漏洞类别:Web server漏洞等级: 漏洞信息 HTTP Strict Transport Security (HSTS) is an opt-in security enhancement that is specified by a web application through the use of a special response header. Once a supported browser receives this header that browser will prevent any c…
漏洞类别:Web server漏洞等级: 漏洞信息 BRS WebWeaver is a freeware program including a Web server and an FTP server developed by Blaine Southam. BRS WebWeaver contains several vulnerabilities that allow remote users to obtain sensitive information. The Web server has a dir…
漏洞类别:Web server漏洞等级: 漏洞信息 BearShare, a file-sharing program, contains a flaw that allows remote unauthorized users to use a variant of the ?dot-dot? attack to break out of the root directory used by BearShare. After breaking out of the root directory, the user…
漏洞类别:Web server漏洞等级: 漏洞信息 Web printing is activated! If you have already applied the appropriate patches to Microsoft IIS, then you can safely ignore this vulnerability. Internet Printing Protocol (IPP) enables remote users to submit various print related jobs…
漏洞类别:Web server漏洞等级: 漏洞信息 Note: This vulnerability only applies to CyberScheduler Version 2.1. CrossWind CyberScheduler is a team-oriented scheduling and calendaring package designed for use in corporate Intranets. It consists of two distinct parts--a set of C…
漏洞类别:Web server漏洞等级: 漏洞信息 Note: The following versions of SimpleServer:WWW are susceptible to this vulnerability: 1.0.3, 1.0.4, 1.0.5, 1.0.6, 1.0.7, and 1.0.8. Simpleserver:WWW is a freely available Web server from AnalogX. It is designed to provide an easy to…
漏洞类别:Web server漏洞等级: 漏洞信息 Allaire Macromedia ColdFusion is a Web application server. It supports quick development, publication, and management of Web content. ColdFusion Version 4.x includes a function called CFCACHE. This function improves server performance…
漏洞类别:Web server漏洞等级: 漏洞信息 IBM WebSphere Application Server is designed to facilitate the creation of enterprise Web applications. The Server is exposed to multiple security vulnerabilities. Affected Versions: IBM WebSphere Application Server (WAS) 7.0 before 7…
漏洞类别:Web server漏洞等级: 漏洞信息 Web Companion Software is part of the Filemaker Pro Version 5.0 database package. This package includes XML publishing capability, which does not make use of Filemaker Pro's Web security features. Filemaker Pro Version 5.0 also integr…
漏洞类别:Web server漏洞等级: 漏洞信息 The Viking Server is a freely available software package maintained and distributed by Robtex. The Viking Server provides multiple protocol service on Windows 95, Windows 98, and Windows NT systems. A problem occurs in the validation …
漏洞类别:Web server漏洞等级: 漏洞信息 Zope is a dynamic HTML management package maintained by the Zope Project. Some versions of Zope contain a path disclosure vulnerability that allows malicious users to view absolute path information. This issue can be exploited if the …
漏洞类别:Web server漏洞等级: 漏洞信息 Xitami is a Web server for Windows 98 and Windows Me from Imatix. Versions of Xitami are vulnerable to a denial of service attack. It is possible to remotely crash a system running the Xitami Web server by submitting a URL request for…
漏洞类别:Web server漏洞等级: 漏洞信息 Lotus Domino is a multi-platform Web server that integrates messaging with various interactive Web applications. Due to the handling of unusually long GET requests, it is possible for a remote user to exhaust system resources on a hos…
漏洞类别:Web server漏洞等级: 漏洞信息 WEBactive HTTP Server is configured by default to store the server log in the root WWW directory as the file "active.log". This file can be retrieved remotely. 漏洞危害 By exploiting this vulnerability, a malicious user could retrieve all…
漏洞类别:Web server漏洞等级: 漏洞信息 GoAhead WebServer contains a problem that makes it possible for remote users to deny service to legitimate users of the service. Few details on the nature of this problem are available. 漏洞危害 Upon accessing the GoAhead WebServer remote…
漏洞类别:Web server漏洞等级: 漏洞信息 Viking Server, a multi-purpose server product for Windows, provides SMTP mail service. The Viking Web server contains a directory traversal vulnerability. 漏洞危害 If successfully exploited, this could lead to the disclosure of sensitive …
漏洞类别:Web server漏洞等级: 漏洞信息 Zope is a dynamic HTML management package maintained by the Zope Project. Some versions of Zope contain a vulnerability that could allow remote users to modify internal Zope data structures. A remote user may be able to delete, add, o…