|
313441
|
7.8 |
HIGH
Local
|
proftpd
|
proftpd
|
Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows local users to gain privileges via a 1024 byte RETR command.
|
CWE-193
Off-by-one Error
|
CVE-2004-0346
|
2024-02-2 11:48 |
2004-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313442
|
7.8 |
HIGH
Local
|
microsoft
|
excel
office_sharepoint_server
office_compatibility_pack
office
office_excel_viewer
open_xml_file_format_converter
|
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack f…
|
CWE-843
Type Confusion
|
CVE-2010-0258
|
2024-02-2 11:38 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313443
|
- |
|
linux
|
linux_kernel
|
nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR privilege before setting access controls (ACL) on files on exported NFS filesystems, which allows remote attackers to bypass ACLs f…
|
CWE-862
Missing Authorization
|
CVE-2005-3623
|
2024-02-2 11:19 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313444
|
7.5 |
HIGH
Network
|
oracle
|
sun_one_application_server
|
Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2003-0411
|
2024-02-2 11:18 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313445
|
7.5 |
HIGH
Network
|
symantec
|
norton_antivirus
|
Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some…
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2002-0485
|
2024-02-2 11:17 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313446
|
7.5 |
HIGH
Network
|
netscape
|
fasttrack_server
|
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-1999-0239
|
2024-02-2 11:16 |
1998-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313447
|
9.8 |
CRITICAL
Network
|
sir
|
gnuboard
|
The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that inc…
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2005-0269
|
2024-02-2 11:15 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313448
|
9.8 |
CRITICAL
Network
|
apache
|
http_server
|
Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2001-0766
|
2024-02-2 11:13 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313449
|
7.5 |
HIGH
Network
|
cmfperception
|
liteserve
|
Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that contain MS-DOS conventions such as (1) upper case letters or (2) 8.3 file names.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2001-0795
|
2024-02-2 11:12 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313450
|
7.8 |
HIGH
Local
|
microsoft
|
windows_2000
|
Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which coul…
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2001-1238
|
2024-02-2 11:11 |
2001-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
