|
314891
|
7.5 |
HIGH
Network
|
netscape
|
fasttrack_server
|
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-1999-0239
|
2024-02-2 11:16 |
1998-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314892
|
9.8 |
CRITICAL
Network
|
sir
|
gnuboard
|
The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that inc…
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2005-0269
|
2024-02-2 11:15 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314893
|
9.8 |
CRITICAL
Network
|
apache
|
http_server
|
Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2001-0766
|
2024-02-2 11:13 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314894
|
7.5 |
HIGH
Network
|
cmfperception
|
liteserve
|
Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that contain MS-DOS conventions such as (1) upper case letters or (2) 8.3 file names.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2001-0795
|
2024-02-2 11:12 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314895
|
7.8 |
HIGH
Local
|
microsoft
|
windows_2000
|
Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which coul…
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2001-1238
|
2024-02-2 11:11 |
2001-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314896
|
7.5 |
HIGH
Network
|
transsoft
|
broker_ftp_server
|
Transsoft Broker 5.9.5.0 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.
|
CWE-59
Link Following
|
CVE-2001-1042
|
2024-02-2 11:05 |
2001-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314897
|
7.5 |
HIGH
Network
|
qualcomm
|
eudora
|
Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."
|
CWE-59
Link Following
|
CVE-2000-0342
|
2024-02-2 11:05 |
2000-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314898
|
7.5 |
HIGH
Network
|
argosoft
|
ftp_server
|
ArGoSoft FTP Server 1.2.2.2 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.
|
CWE-59
Link Following
|
CVE-2001-1043
|
2024-02-2 11:04 |
2001-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314899
|
6.5 |
MEDIUM
Network
|
mozilla
|
mozilla
firefox
|
Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to overwrite arbitrary files by tricking the user into downloading a .LNK (link) file twice, which overwrites the file …
|
CWE-59
Link Following
|
CVE-2005-0587
|
2024-02-2 11:03 |
2005-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314900
|
7.5 |
HIGH
Network
|
texasimperialsoftware
|
wftpd
|
WFTPD 3.00 allows remote attackers to read arbitrary files by uploading a (link) file that ends in a ".lnk." extension, which bypasses WFTPD's check for a ".lnk" extension.
|
CWE-59
Link Following
|
CVE-2001-1386
|
2024-02-2 11:02 |
2001-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
