Lucene search
MitreCVELIST:CVE-2008-0407HistoryJan 28, 2008 - 11:00 p.m.
CVE-2008-0407
2008-01-2823:00:00
mitre
www.cve.org
1
HTTP File Server (HFS) before 2.2c tags HTTP request log entries with the username sent during HTTP Basic Authentication, regardless of whether authentication succeeded, which might make it more difficult for an administrator to determine who made a remote request.
References
secunia.com/advisories/28631
securityreason.com/securityalert/3582
www.rejetto.com/hfs/?f=wn
www.securityfocus.com/archive/1/486874/100/0/threaded
www.securityfocus.com/bid/27423
www.syhunt.com/advisories/hfs-1-username.txt
www.syhunt.com/advisories/hfshack.txt
exchange.xforce.ibmcloud.com/vulnerabilities/39877
Related
nvd
nvd
CVE-2008-0407
2008-01-29 00:00:00
cve
cve
CVE-2008-0407
2008-01-29 00:00:00
prion
prion
Cross site request forgery (csrf)
2008-01-29 00:00:00
securityvulns
securityvulns
Syhunt: HFS (HTTP File Server) Username Spoofing and Log Forging/Injection Vulnerability
2008-01-24 00:00:00
HTTP File Serve multiple security vulnerabilities
2008-01-24 00:00:00
exploitpack
exploitpack
Rejetto HTTP File Server (HFS) 1.52.x - Multiple Vulnerabilities
2008-01-23 00:00:00
seebug
seebug
HFS HTTP File Server 1.5/2.x Multiple Security Vulnerabilities
2014-07-01 00:00:00
HFS HTTP File Server多个远程安全漏洞
2008-01-26 00:00:00
exploitdb
exploitdb
Rejetto HTTP File Server (HFS) 1.5/2.x - Multiple Vulnerabilities
2008-01-23 00:00:00
packetstorm
packetstorm
hfshack.txt
2008-01-24 00:00:00