359 matches found
CVE-2016-8276
Buffer overflow in the Point-to-Point Protocol over Ethernet PPPoE module in Huawei USG2100, USG2200, USG5100, and USG5500 unified security gateways with software before V300R001C10SPC600, when CHAP authentication is configured on the server, allows remote attackers to cause a denial of service...
EAP7 Privilege escalation when managing domain including earlier version slaves
The domain controller will not propagate its administrative RBAC configuration to some slaves. An attacker could use this to escalate their privileges...
Microsoft Windows Privilege Escalation Vulnerabilities (3178465)
This host is missing an important security update according to Microsoft Bulletin MS16-101. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Kerberos Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists in Windows when Kerberos improperly handles a password change request and falls back to NT LAN Manager NTLM Authentication Protocol as the default authentication protocol. An attacker who successfully exploited this vulnerability could use it to bypa...
JGroups: Authorization bypass
It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information...
JGroups: Authorization bypass
It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information...
DEBIAN-CVE-2016-2141
It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information...
JGroups: Authorization bypass
It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information...
JGroups: Authorization bypass
It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information...
The vulnerability of the Cisco Identity Services Engine, a platform for managing network policies, allows a perpetrator to trigger a service failure.
The vulnerability of the Active Directory Integration component of the Cisco Identity Services Engine management platform relates to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to cause service interruptions through a specially crafted...
CVE-2016-2110
The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as...
samba: Man-in-the-middle attacks possible with NTLMSSP authentication
Several flaws were found in Samba's implementation of NTLMSSP authentication. An unauthenticated, man-in-the-middle attacker could use this flaw to clear the encryption and integrity flags of a connection, causing data to be transmitted in plain text. The attacker could also force the client or...
DEBIAN-CVE-2015-8023
The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin in strongSwan 4.2.12 through 5.x before 5.3.4 does not properly validate local state, which allows remote attackers to bypass authentication via an empty Success message in response to an initial Challenge message...
UBUNTU-CVE-2015-5314
The eappwdprocess function in eapserver/eapserverpwd.c in hostapd 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when used with 1 an internal EAP server or 2 a RADIUS server and EAP-pwd is enabled in a runtime configuration, which allows remote...
DEBIAN-CVE-2015-4143
The EAP-pwd server and peer implementation in hostapd and wpasupplicant 1.0 through 2.4 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 Commit or 2 Confirm message payload...
UBUNTU-CVE-2015-4171
strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client before 1.4.6, when using EAP or pre-shared keys for authenticating an IKEv2 connection, does not enforce server authentication restrictions until the entire authentication process is complete, which allows remote servers to obtai...
Oracle PeopleSoft Security Vulnerabilities Elevate ERP Security
Enterprise resource planning systems are the unexplored continent of vulnerability research, in spite of the fact that these massive, critical business systems support the inner workings of many large corporations and IT organizations. A recent run of bugs in SAP, and a presentation at this week’...
FreeRADIUS EAP-PWD Module Read Overflow Denial of Service Vulnerability
FreeRadius is an open source based on the Radius protocol , the implementation of Radius AAA Authentication, Authorization, Accounting function of the software . FreeRadius processing EAP-PWD messages there are read overflow vulnerabilities , allowing remote attackers to exploit the vulnerability...
wpa_supplicant/hostapd eap_server/eap_server_pwd.c eap_pwd_process_commit_resp() out-of-bounds read vulnerability
hostapd is a user-state daemon for APs and authentication servers. wpasupplicant is a WiFi-capable component for Android that supports authentication of wireless connections. hostapd eapserver/eapserverpwd.c An out-of-bounds read vulnerability exists in the eappwdprocesscommitresp function when...
Microsoft Windows NTLM Man-in-the-Middle Information Disclosure Vulnerability
Windows Challenge/Response NTLM is used for network authentication protocols, both on systems running the Windows operating system and on standalone systems. A man-in-the-middle information disclosure vulnerability exists in Microsoft Windows NTLM. This vulnerability could be exploited by an...