Customer Login: PassWord: US Toll Free : 1 877 556 6705

RESOURCES


Application Vulnerability Advisories for Website Security Checks

The following application vulnerability advisories were discovered by Gamasec’s in-house research and development team. This team actively develops customizable website security checks to improve your internet security and vulnerability assessments

For more details click on any of the vulnerability advisories below:

  Eternal Lines Web Server Lets Remote Users Deny Service With Multiple Simultaneous Connections
Eternal Lines Web Server Denial of Service.
  Jeuce Personal Web Server Directory Traversal And Denial Of Service Vulnerabilities
Jeuce Personal Web Server Directory Traversal And Denial Of Service Vulnerabilities.
  Winmail Server Disclose Installation Path to Remote Users
A remote user can determine the installation path.
  DeSofto MyProxy Lets Remote Authenticated Users Connect to Arbitrary Ports and Hosts
A remote authenticated user can connect to other systems via the proxy.
  WinFTP Server Clear Text User Credential Disclosure
A local users can gain knowledge of sensitive information.
  Cyber Web Filter IP Address Web Blocking Can Be Bypassed
A user can bypass the IP address filtering mechanism.
  NetworkActiv Web Server Denial of Service Vulnerability
A remote user can cause denial of service conditions.
  Intellipeer Email Server Discloses Valid User Account Names to Remote Users
A remote user can determine valid user account names on the mail server.
  Cerbere Proxy Server "Host:" Header Denial of Service Vulnerability
A remote user can cause denial of service conditions.
  Keene Digital Media Server Discloses Files and Passwords to Remote Authenticated Users
A remote user can view files on the target system. A remote authenticated user can perform administrative tasks.
  Shuttle FTP Suite TFTP Server Directory Traversal Vulnerability
A remote user can read and write files on the target system.
  FTP GLIDE Discloses Passwords to Local Users
A local user can view passwords.
  WinAgents TFTP Server Remote Buffer Overrun Vulnerability
A remote user can cause the TFTP service to crash.
  SurgeLDAP User Authentication Bypass Vulnerability
A remote user can gain access to the web-based administration interface.
  TinyWeb Lets Remote Users Download CGI Scripts
A remote user can download cgi scripts.
  Nextgen FTP Server Discloses Arbitrary Files to Remote Authenticated Users
A remote authenticated user can view files on the target system that are located outside of the FTP root directory.
  Macallan Mail Solution Web Interface Authentication Bypass Vulnerability
A remote user can bypass the authentication mechanism.
  Mbedthis AppWeb Can Be Crashed By Remote Users
A remote user can crash the web service.
  Xlight FTP Server '..\' Directory Traversal Flaw Discloses Files to Remote Users
A remote authenticated user can view arbitrary files on the system and can cause the FTP service to crash.
  PostMaster Proxy Service Cross-Site Scripting Vulnerability
A remote user can conduct cross-site scripting attacks.
  Rit Research Labs TinyWeb Server Remote Denial of Service Vulnerability
A remote user can cause the server to consume a large amount of CPU resources.
  TM-POP3 Mail Server Discloses User Passwords to Local Users
A local user can view the user account passwords.
  FTGatePro Mail Server Information Disclosure Vulnerabilities
A remote user can determine valid user account names on the system.
  SurgeLDAP Can Be Crashed By Remote Users and Also Discloses Passwords to Local Users
A remote user can conduct cross-site scripting attacks and can also determine the installation path.
  Message Foundry Permits Cross-Site Scripting Attacks and Lets Remote Authenticated Users Change Other User Passwords Remote Users
A remote user can conduct cross-site scripting attacks. A local user can view the administrator's password. A remote authenticated user can change another user's password.
  PinkNet Web Server Discloses Files on the System to Remote Users
A remote user can view files on the system that are located outside of the web document directory.
  NGC Active MailServer Denial of Service
A remote user can cause the mail server to crash.
  ARMIDA Long HTTP Request Denial of Service Vulnerability
A remote user can cause denial of service conditions on the target server.
  Power Server Discloses Passwords and Files to Remote Users
A remote user can view user passwords and files on the system and can introduce denial of service conditions.
  Ability Mail Server Discloses Passwords to Local Users
Ability Mail Server Stores Passwords in Plain Text
  myServer Web Server Input Validation Flaw Discloses Files on the System to Remote Users
A remote user can view files on the system located outside of the web document directory.
  silentThought Simple Web Server Directory Traversal Vulnerability
A remote user can view files on the system that are located outside of the web document directory.
  WebBBS Pro Can Be Crashed By Remote Users
A user can crash the web server.
  NGC Active FTPServer USER Command Overflow Lets Remote Users Crash the FTP Service
A remote user can cause the FTP service to crash.
  Aiglon Web Server Installation Path Information Disclosure Weakness
A remote user can determine the installation path on the target server.
  Enceladus Server Suite Bugs Disclose Passwords to Local Users and Permit Cross-Site Scripting Attacks
A remote authenticated user can view a restricted password file. A remote user can also conduct cross-site scripting attacks.
  Mailtraq E-mail Server Discloses Script Source Code to Remote Users and Permits Cross-Site Scripting Attacks
A remote user can view ASP source code, determine the installation path, and conduct cross-site scripting attacks.
  Forum Web Server Discloses Files to Remote Users and Passwords to Remote Users Sniffing the Network
A remote user can view files on the system. A remote user monitoring the network can obtain user passwords.
  MRSoft Personal FTP Server (PFTP) Discloses Passwords to Local Users
A local user can gain access to user passwords.
  BaSoMail Server Can Be Crashed By Remote Users and Also Discloses Passwords to Local Users
BaSoMail Server Denial of Service
  Meteor FTP Server Discloses Whether a Specified Username is Valid or Not
A remote user can determine valid usernames on the server.
  ShareMailPro Mailbox and Status Information Disclosure Vulnerability
An information disclosure vulnerability has been reported in ShareMailPro.
  ShareMailPro Discloses Valid Account Names to Remote Users
A remote user can determine if a specified user account name exists on the system.
  Cerberus FTP Server Discloses Existence of User Accounts to Remote Users
A remote user can determine if specified user accounts exist on the system.
   


Check your website with a free website scan

Contact us to learn how website security checks and vulnerability advisories can protect your site