Umuwa Home
  Web     Image     Video     News  
 
Showing results for lpt9.xtp

    Web Results
 
 
Information Disclosure Vulnerability in Resin Web and ... 
 
windowsitpro.com/windows/information-disclosure...
By requesting certain disk operating system (DOS) devices, such as lpt9.xtp, an ... Information Disclosure Vulnerability in Resin Web and Application Server; Information Disclosure Vulnerability in Ritlabs TinyWeb 1.92;  
 
 
 
Nessus Plugins 
 
www.tenable.com/plugins/index.php?view=single&id=11048
special DOS device, e.g. lpt9.xtp An attacker may use this flaw to gain further knowledge about the remote filesystem layout. Solution : Upgrade to a later software version. Risk factor : Medium / CVSS Base Score : 5.0 (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)  
 
 
 
Caucho Resin Web Server Discloses Physical Path of Web Root ... 
 
securitytracker.com/id/1004792
A remote user can reportedly request certain DOS devices (e.g., lpt9.xtp) to generate an error message that displays the physical path of the web server root directory. Impact: A remote user can determine the physical path of the web root directory.    
 
 
ControlScan : Threat 111048 - Resin MS-DOS Device Request ... 
 
https://my.controlscan.com/threats/details.cgi?id=111048
Resin will reveal the physical path of the webroot when asked for a special DOS device, e.g. lpt9.xtp. An attacker may use this flaw to gain further knowledge about the remote filesystem layout.  
 
 
 
Resin MS-DOS Device Request Path Disclosure 
 
www.scip.ch/en/?nasldb.11048
special DOS device, e.g. lpt9.xtp An attacker may use this flaw to gain further knowledge about the remote filesystem layout. Exploiting. Exploit Available: True Exploitability Ease: No exploit is required. Sources. CVE: CVE-2002-2090 OSVDB: – Bugtraq: –    
 
 
National Cyber Awareness System - NVD - Detail 
 
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-4703
... as demonstrated by lpt9.xtp using Nikto. Impact CVSS Severity (version 2.0): CVSS v2 Base Score: 5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:P/I:N/A:N) ...  
 
 
 
Apache : Security vulnerabilities - CVEdetails.com 
 
www.cvedetails.com/vulnerability-list.php?vendor_id=45...
Security vulnerabilities related to Apache : List of vulnerabilities related to any product of this vendor. Cvss scores, vulnerability details and links to full CVE details and references  
 
 
 
Web application abuses : Resin DOS device path disclosure 
 
www.securityspace.com/smysecure/catid.html?id=1.3.6.1.4...
when asked for a special DOS device, e.g. lpt9.xtp An attacker may use this flaw to gain further knowledge about the remote filesystem layout. Solution : Upgrade to a later software version. Cross-Ref: BugTraq ID: 5252 Common Vulnerability Exposure (CVE) ID: CVE-2002-2090  
 
 
 
Resin DOS Device Path Disclosure - SecuriTeam.com - A Free ... 
 
www.securiteam.com/windowsntfocus/5QP0F207PY.html
Requesting certain DOS devices, such as lpt9.xtp, results in an error message that contains the physical path to the web root. 500 Servlet Exception java.io.FileNotFoundException: C:\Documents and Settings\Administrator\Desktop\resin-2.1.1\resin-2.1.1\doc\aux.xtp  
 
 
 
KPMG-2002033: Resin DOS device path disclosure | Full ... 
 
www.gossamer-threads.com/lists/fulldisc/full-disclosure/137
Requesting certain DOS devices, such as lpt9.xtp, results in an error message that contains the physical path to the web root. 500 Servlet Exception java.io.FileNotFoundException: C:\Documents and Settings\Administrator \Desktop\resin-2.1.1\resin-2.1.1\doc\aux.xtp  
 
 
 
Caucho Technology Resin : List of security vulnerabilities 
 
www.cvedetails.com/vulnerability-list.php?vendor_id=576...
... server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp. 11 CVE-2002-1990: 2002-12-31: 2008-09-05: 5.0. None: Remote: Low: Not required: Partial: None: None:  
 
 
 
ISS X-Force Database: resin-dos-path-disclosure(9590): Resin ... 
 
xforce.iss.net/xforce/xfdb/9590
... server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp. OSVDB ID: 850: Caucho Resin MS-DOS Device Request Path Disclosure; Platforms Affected: Caucho Resin 2.1.1    
 
 
ISS X-Force Database: tomcat-msdos-path-disclosure(42914 ... 
 
xforce.iss.net/xforce/xfdb/42914
... which leaks the pathname in an error message, as demonstrated by lpt9.xtp using Nikto. OSVDB ID: 20033: Apache Tomcat MS-DOS Device Request Error Message Path Disclosure ...    
 
 
SecuritySpace - CVE-2002-2090 
 
www.securityspace.com/smysecure/catid.html?id=CVE-2002...
CVE ID: CVE-2002-2090: Description: Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp.  
 
 
 
Apache Tomcat 4.0.3 - Requests Containing MS-DOS Device Names ... 
 
www.exploit-db.com/exploits/31551
Apache Tomcat 4.0.3 Requests Containing MS-DOS Device Names Information Disclosure Vulnerability    
 
 
Vulnerability CVE-2002-2090 - CXSecurity 
 
cxsecurity.com/cveshow/CVE-2002-2090
Vulnerability CVE-2002-2090 Published: 2002-12-31 Modified: ... server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp. Vendor: Caucho technology: Product: Resin : Version: 2.1.2; 2.1.1;  
 
 
 
Security Advisory: KPMG-2002033: Resin DOS device path ... 
 
securityvulns.com/docs3231.html
Security Advisory: KPMG-2002033: Resin DOS device path disclosure news / advisories / software / search / exploits [EN] securityvulns.ru no-pyccku Related ... Requesting certain DOS devices, such as lpt9.xtp, results in an error    
 
 
CVE-2005-4703 - Alert Detail - Security Database 
 
www.security-database.com/detail.php?alert=CVE-2005-4703
... which leaks the pathname in an error message, as demonstrated by lpt9.xtp using Nikto. Original Source. Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4703 ...  
 
 
 
CVE-2005-4703 - Apache Tomcat 4.0.3, when running on Windows ... 
 
cve.circl.lu/cve/CVE-2005-4703
ID: CVE-2005-4703: Summary: Apache Tomcat 4.0.3, when running on Windows, allows remote attackers to obtain sensitive information via a request for a file that contains an MS-DOS device name such as lpt9, which leaks the pathname in an error message, as demonstrated by lpt9.xtp using Nikto.    
 
 
apache / tomcat vulnerabilities - CIRCL 
 
cve.circl.lu/search/apache/tomcat
CVE-2013-4286 - Apache Tomcat before 6.0.39, 7.x before 7.0.47, and 8.x before 8.0.0-RC3, when an HTTP connector or AJP connector is used, does not properly handle certain inconsistent HTTP request headers, ... as demonstrated by lpt9.xtp using Nikto.    
 
 
TR-17 - Java.Tomdep - Information, Detection and Recommendation 
 
www.circl.lu/pub/tr-17
TR-17 - Java.Tomdep - Information, Detection and Recommendation. TR-17 - Java.Tomdep - Information, Detection and Recommendation ↑ Back to Publications and Presentations. Overview; Background Information; ... as demonstrated by lpt9.xtp using Nikto. ...    
 
 
phoile.kattare.com 
 
phoile.kattare.com/stats/data/petrodigital.com.au/aw...
... /search/queryhit.idq 1 - /cgi-local/dansguardian.pl 1 - /cgi-local/multihtml.pl 1 - /Petroleum/images/GWWEB.EXE 2 - /lpt9.xtp 1 - /help/wwhelp/wwhimpl/js/html/wwhelp.htm 1 - /webcart/carts/ 1 - /Petroleum/images/admin/login.php 3 - /Petroleum/_css/index.html 3 - /forum/viewforum.php 1 ...  
 
 
 
phoile.kattare.com 
 
phoile.kattare.com/stats/data/efieldforce.com/awstats...
... .htm 1 - /cgi-local/multihtml.pl 2 - /test/jsp/pageIsErrorPage.jsp 2 - /help/wwhelp/wwhimpl/js/html/wwhelp.htm 2 - /lpt9.xtp 2 - /.procmailrc 2 - /cgi-bin/ezboard.cgi 2 - /webcart/carts/ 2 - /cgi-bin/LightNEasy.php 2 - /transito/ 4 - /forum/viewforum.php 2 - /SiteServer/Admin/knowledge ...  
 
 
 
Sambar Server - EAS Home - College of Engineering and Applied ... 
 
cs.uccs.edu/~cs591/src/scanner/nikto-1.35/plugins/scan...
... (could just be typos & be very close to the right entries)." "generic","/lpt9.xtp","java.io.FileNotFoundException:","GET","Resin 2.1 reveals the server path when a DOS device is requested."  
 
 
 
forum.ducatodelporno.org 
 
forum.ducatodelporno.org/hosting2/images/4930c23beddba
forum.ducatodelporno.org  
 
 
 
scan_database.db - opensourcejavaphp.net Opensource Java ... 
 
opensourcejavaphp.net/python/w3af/plugins/discovery/...
"generic", "/lpt9.xtp", "java.io.FileNotFoundException:", "GET", "Resin 2.1 and Tomcat servers reveal the server path when a DOS device is requested."  
 
 
 
/+comersus/database/comersus.mdb /+comersus/store/comersus ... 
 
pastebin.com/CUzCazUj
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)    
 
 
Hello! 
 
https://www.cirt.net/nikto/UPDATES/1.23/scan_database.db
"generic","/logs/access_log","200","GET","Just found this log..." "generic","/lpt9.xtp","java.io.FileNotFoundException:","GET","Resin 2.1 reveals the server path when a DOS device is requested." "generic","/mail/","200","GET","This might be interesting..."  
 
 
 
Hello! 
 
target0.be/madchat/reseau/win.nt.seku/pupucgi2.txt
c,generic,/,lpt9.xtp,"java.io.FileNotFoundException:",GET,"Resin 2.1 reveals the server path when a a DOS device is requested." c,generic,/,manual.php,200,GET,"Does not filter input before passing to shell command. Try 'ls -l' as the man page entry."  
 
 
 
CGI_XPlatform.fuzz.txt - fuzzdb - Attack and Discovery ... 
 
code.google.com/p/fuzzdb/source/browse/trunk/discovery/...
Attack and Discovery Pattern Database for Application Fuzz Testing. Project Home Downloads Wiki Issues Source Export to GitHub. Checkout Browse Changes  
 
 
 
[mIRC] /+comersus/database/comersus.mdb /+comersus/store ... 
 
pastebin.com/raU8Bdeq
This paste has a previous version, view the difference. Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac) /    
 
 
CVE-2002-2090漏洞详情 - SCAP中文社区 
 
cve.scap.org.cn/CVE-2002-2090.html
[原文] Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp.    
 
 
AERAsec - Network Security - Current Security Messages 
 
www.aerasec.de/security/archiv/200207.html.en
Latest Security Messages ... (DOS) devices, such as lpt9.xtp, an attacker can cause the server to display an error message with the path to Web root in the returned-error information. It's recommended to install the latest version of this server from Caucho Technology.  
 
 
 
retrogod.altervista.org 
 
retrogod.altervista.org/paths.txt
... / /logger.html /logger/ /logging/ /login.asp%3F+.htr /login.jsp /login/ /logs.txt /logs/ /logs/access_log /lpt /lpt9 /lpt9.xtp /lsxlc.nsf /mab.nsf /mail.box /mail/ /mail/addressaction.html?id= &newaddress=1&addressname=&addressemail=junk@example.com /mail/adminisist.nsf /mail1.box /mail10 ...    
 
 
3102:Apache Tomcat处理包含MS-DOS设备名请求信息 ... 
 
sebug.net/vuldb/ssvid-3102
GET /lpt9.xtp. Sebug安全建议: Apache Software Foundation Tomcat 4.0.3 Apache Software Foundation apache-tomcat-4.1.37.tar.gz http://mirror.lemonfree.com/apache/tomcat/tomcat-4/v4.1.37/bin/apache-tomcat-4.1.37.tar.gz @Sebug.net [ 2008-03-29 ]    
 
 
CVE Cross Reference 2005 - SAINT Cybersecurity solutions ... 
 
www.saintcorporation.com/cgi-bin/doc.pl?document=cve_2005
CVE Cross Reference 2005 The information on this page may be obsolete. For the current documentation, please log into the mySAINT portal using your customer login and password.  
 
 
 
BigDap — PasteBin 
 
pastebin.ru/6OWqhSOO
BigDap Публично отправил ... Module 18 is requesting GET /lpt9.xtp. Module 18 is requesting GET /servlet/sunexamples.BBoardServlet. Module 18 is requesting GET /cgi-bin/.www_acl. Module 18 is requesting GET /cgi-bin/post32.exe%7Cdir%20c:%22,    
 
 
Sambar Server - CIRT.net | Suspicion Breeds Confidence 
 
www.cirt.net/source/nikto/UPDATES/2.1.1/db_tests
... Entries","GET","200","","","","","CVS Entries file may contain directory listing information.","","" "000406","0","3","/lpt9.xtp","GET","java.io.FileNotFoundException: ...  
 
 
 
Caucho Technology Resin Server设备名远程路径泄露 ... 
 
tech.ccidnet.com/art/782/20050621/608315_1.html
攻击者可以通过请求部分MS-DOS设备,如lpt9.xtp,可导致Resin返回包含WEBROOT ...  
 
 
 
nu-support.intra-mart.jp 
 
nu-support.intra-mart.jp/patch/download/exec_download...
http://[サーバアドレス]:[ポート]/lpt9.xtp File: [U] bin/httpd/activation.jar [U] bin/httpd/ejb-20.jar [U] bin/httpd/ejb-30.jar [U] bin/httpd/j2ee-deploy-10.jar [U] bin/httpd/j2ee-management-10.jar [U] bin/httpd/jca ...  
 
 
 
Нарушение конфиденциальности ... 
 
https://xakep.ru/2008/03/28/42991
GET /lpt9.xtp . SCOLOUR; SOFT;    
 
 
绿盟科技——巨人背后的专家 Caucho Technology ... 
 
www.nsfocus.net/vulndb/3138
攻击者可以通过请求部分MS-DOS设备,如lpt9.xtp,可导致Resin返回包含WEBROOT ...    
 
 
kysmykseka.net 
 
kysmykseka.net/koti/wizardry/Networking/O'Reilly%20...
kysmykseka.net  
 
 
 
nu-support.intra-mart.jp 
 
nu-support.intra-mart.jp/patch/download/exec_download...
http://[サーバアドレス]:[ポート]/lpt9.xtp File: [U] bin/httpd/activation.jar [U] bin/httpd/ejb-20.jar [U] bin/httpd/ejb-30.jar [U] bin/httpd/j2ee-deploy-10.jar [U] bin/httpd/j2ee-management-10.jar [U] bin/httpd/jca-15.jar ...  
 
 
 
db_tests - inguma - A Free Penetration Testing And ... 
 
code.google.com/p/inguma/source/browse/data/db_tests?r=2...
A Free Penetration Testing And Vulnerability Research Toolkit. Project Home Downloads Wiki Issues Source. Repository: ...  
 
 
 
evka.trip.sk 
 
evka.trip.sk/logs/awstats/awstats062006.www.zvierata.com.txt...
... (http://majestic12.co.uk/bot.php?_) 20060617225547 ... .pl 1 - /scripts/myphpPageTool/doc/admin/index.php 1 - /gallery-new/file.php 1 - /test/jsp/pageIsErrorPage.jsp 1 - /lpt9.xtp 1 - /scripts/backend/classes.php 1 - /gallery-new/i-mall.cgi 1 - /gallery-new/viewpage.php 1 - /.procmailrc ...  
 
 
 
AERAsec - Network Security - Aktuelle Sicherheits-Meldungen 
 
www.aerasec.de/security/archiv/200207.html.de
Sie setzen eine sichere Firewall ein?! Wissen Sie, was sich sonst noch so in Ihrem Netzwerk tummelt? Wir unterstützen Sie, indem wir auch bei Ihnen im internen Netzwerk die vorhandene Sicherheit (ohne Auswirkung auf Ihren Produktivbetrieb) prüfen.  
 
 
 
awstats.inera.it 
 
awstats.inera.it/www.bibliotecauniversitaria.ge.it/stats/......
AWSTATS DATA FILE 6.95 (build 1.943) # If you remove this file, all statistics for date 201205 will be lost/reset. # Last config file used to build this data file was /etc/awstats/awstats.www.bibliotecauniversitaria.ge.it.conf. # Position (offset in bytes) in this file for beginning of each ...  
 
 
 
www.ethicalhack3r.co.uk 
 
www.ethicalhack3r.co.uk/files/misc/amihackerproof.txt
www.ethicalhack3r.co.uk  
 
 
 
O'Reilly - Network Security Assessment 2nd Edition Nov 2007 
 
www.docstoc.com/docs/81760042/OReilly---Network-Security...
O'Reilly - Network Security Assessment 2nd Edition Nov 2007. Download Print. VIEWS: 7,608 PAGES: 506. Embed Doc. pg 1 ...  
 
 
 


No more results ...
Copyright © 2016 Umuwa. All Rights Reserved. About us / Privacy Policy / Sitemap Most searched