755 matches found
Solaris 10 (sparc) : 141690-02
SunOS 5.10: sockfs patch. Date this patch was last updated by Sun : Aug/25/09 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if ! definedfunc"bnrandom"...
Cisco VPN Concentrator 3000 FTP Unauthorized Administrative Access
This module tests for a logic vulnerability in the Cisco VPN Concentrator 3000 series. It is possible to execute some FTP statements without authentication CWD, RNFR, MKD, RMD, SIZE, CDUP. It also appears to have some memory leak bugs when working with CWD commands. This module simply creates an...
apc Smartups 3000 Default Password (deprecated)
Binary data 4913.prm...
Extmail安全漏洞
ExtMail Project 是一个活跃的开源邮件系统项目,目前由ExtMail...
CVE-2008-3000
The vulnerability CVE-2008-3000 affects Drupal’s Aggregation module (5.x) prior to 5.x-4.4 when node access modules are enabled. The issue is a faulty access-control implementation that may allow remote attackers to bypass restrictions and access areas they should not reach. The description and m...
openSUSE 10 Security Update : kernel (kernel-5339)
This kernel update fixes the following security problems: CVE-2008-2136: A problem in SIT IPv6 tunnel handling could be used by remote attackers to immediately crash the machine. CVE-2008-1615: On x8664 a denial of service attack could be used by local attackers to immediately panic / crash the...
joomlad3000-sql.txt
Powered by Download 3000 AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAiL : [email protected] DORK 1 : "Powered by Download 3000" DORK 2 : allinurl: "comd3000" EXPLOiT :...
Joomla Component d3000 1.0.0 Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications =============================================================== Joomla Component d3000 1.0.0 Remote SQL Injection Vulnerability =============================================================== Powered by Download 3000 DORK 1 : "Powered by...
Joomla! Component d3000 1.0.0 - SQL Injection
Joomla! Component d3000 1.0.0 - SQL Injection Powered by Download 3000 AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAiL : [email protected] DORK 1 : "Powered by Download 3000" DORK 2 : allinurl: "comd3000" EXPLOiT :...
Grandstream GXV-3000 电话远程拒绝服务安全漏洞
GXV-3000是潮流科技(Grandstream)基于SIP和H.264标准的下一代高级IP视频电话。 GXV-3000在处理特定的消息序列时存在漏洞,远程攻击者可能利用此漏洞导致设备不可用。 如果向GXV-3000电话发送了以下两个消息序列的话,就会导致设备拒绝服务: X ----------------------- INVITE ------------------- GXV-3000 X ------------------ 100 Trying ----------------- GXV-3000 X --------------- 180 Ringing...
CVE-2007-4498
The CVE-2007-4498 entry affects the Grandstream GXV-3000 SIP Phone (firmware 1.0.1.7; Loader 1.0.0.6; Boot 1.0.0.18). It describes a vulnerability where remote attackers can force silent call completion, eavesdrop on the phone’s local environment, and cause a denial of service (blocked call recep...
CVE-2007-4498
The Grandstream SIP Phone GXV-3000 with firmware 1.0.1.7, Loader 1.0.0.6, and Boot 1.0.0.18 allows remote attackers to force silent call completion, eavesdrop on the phone's local environment, and cause a denial of service blocked call reception via a certain SIP INVITE message followed by a...
Grandstream GXV-3000 SIP Phone eavesdropping
It's possible to take the phone off hook without user intervention...
[Full-disclosure] Remote eavesdropping with SIP Phone GXV-3000
While playing with the SIP Madynes stateful fuzzer for a description see http://hal.inria.fr/inria-00166947/en, we have realized that some SIP stack engines have serious bugs allowing to an attacker to automatically make a remote phone accept the call without ringing and without asking the user t...
Grandstream GXV-3000 Phone - Remote Denial of Service
Grandstream GXV-3000 Phone - Remote Denial of Service source: https://www.securityfocus.com/bid/25399/info Grandstream GXV-3000 phones are prone to a remote denial-of-service vulnerability. Exploiting this issue allows remote attackers to cause the device to accept a phone while being unable to...
Grandstream GXV-3000 Phone - Remote Denial of Service
source: https://www.securityfocus.com/bid/25399/info Grandstream GXV-3000 phones are prone to a remote denial-of-service vulnerability. Exploiting this issue allows remote attackers to cause the device to accept a phone while being unable to hang up. This effectively denies service to legitimate...
CVE-2007-3000
CVE-2007-3000 concerns multiple SQL injection vulnerabilities in the PHP JackKnife (PHPJK) package. The issues allow remote attackers to execute arbitrary SQL commands by supplying crafted input to two parameters: (1) iCategoryUnq in G_Display.php and (2) iSearchID in Search/DisplayResults.php. A...
Microsoft Visual Studio 64-bit time functions DoS
Invalid use of assert-style macro causes application termination for timet values behind MAXTIME64T January, 1 3000...
Design/Logic Flaw
WDaemon 9.5.4 allows remote attackers to access the /WorldClient.dll URI on TCP port 3000, which has unknown impact. NOTE: The researcher reports that the vendor response was "this is not a security bug...
CVE-2007-0383
WDaemon 9.5.4 allows remote attackers to access the /WorldClient.dll URI on TCP port 3000, which has unknown impact. NOTE: The researcher reports that the vendor response was "this is not a security bug...