271871
|
- |
|
sws
|
sws_simple_web_server
|
Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP request.
|
NVD-CWE-Other
|
CVE-2002-1864
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271872
|
- |
|
d-link linksys
|
di-804 dl-704 befw11s4 wap11
|
Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.4…
|
NVD-CWE-Other
|
CVE-2002-1865
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271873
|
- |
|
sws
|
sws_simple_web_server
|
Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service (file descriptor exhaustion) via mu…
|
NVD-CWE-Other
|
CVE-2002-1866
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271874
|
- |
|
daniel_stenberg
|
dispair
|
Dispair 0.1 and 0.2 allows remote attackers to execute arbitrary shell commands via certain form fields.
|
NVD-CWE-Other
|
CVE-2002-1868
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271875
|
- |
|
sws
|
sws_simple_web_server
|
Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitializ…
|
NVD-CWE-Other
|
CVE-2002-1870
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271876
|
- |
|
astrocam
|
astrocam
|
astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP request. NOTE: earlier disclosures stated that the affected v…
|
CWE-20
Improper Input Validation
|
CVE-2002-1874
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271877
|
- |
|
mcafee
|
entercept_agent
|
Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the entercept agent password, which could allow the administrators to log on as the en…
|
NVD-CWE-Other
|
CVE-2002-1875
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271878
|
- |
|
w-agora
|
w-agora
|
PHP remote file inclusion vulnerability in w-Agora 4.1.3 allows remote attackers to execute arbitrary PHP code via the inc_dir parameter.
|
NVD-CWE-Other
|
CVE-2002-1878
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271879
|
- |
|
lokwa
|
lokwabb
|
SQL injection vulnerability in LokwaBB 1.2.2 allows remote attackers to execute arbitrary SQL commands via the (1) member parameter to member.php or (2) loser parameter to misc.php.
|
NVD-CWE-Other
|
CVE-2002-1879
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271880
|
- |
|
lokwa
|
lokwabb
|
LokwaBB 1.2.2 allows remote attackers to read arbitrary messages by modifying the pmid parameter to pm.php.
|
NVD-CWE-Other
|
CVE-2002-1880
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|