82 matches found
PT-2022-15700 · Servisnet · Servisnet Tessa
Name of the Vulnerable Software and Affected Versions: Servisnet Tessa version 0.0.2 Description: An issue was discovered where authorization data is available via an unauthenticated request to the "/data-service/users/" API endpoint. Recommendations: For Servisnet Tessa version 0.0.2, consider...
Design/Logic Flaw
Specific versions of the MongoDB C Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when commands such as "saslStart", "saslContinue", "isMaster", "createUser",...
Authorization
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2, when serving as an OAuth 2.0 Service Provider. There is low entropy for authorization data...
The vulnerability of the krb_parse_authz_data function in the SnAuthRPC module of the Secret Net Studio security system allows a hacker to trigger a service failure.
The vulnerability of the krbparseauthzdata function in the SnAuthRPC module of the Secret Net Studio security system is related to buffer overflow attacks. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...
The vulnerability of the krb_parse_authz_data function in the SnAuthRPC module of the Secret Net Studio security system allows a hacker to trigger a service failure.
The vulnerability of the krbparseauthzdata function in the SnAuthRPC module of the Secret Net Studio security system is related to the lack of checks for the execution of the memory allocation command. Exploitation of this vulnerability could allow a malicious actor to cause service failures...
PT-2019-5406 · Red Hat · Openshift Container Platform
Name of the Vulnerable Software and Affected Versions: OpenShift Container Platform versions: openshift-online-3, openshift-enterprise-3.4 through 3.7, openshift-enterprise-3.9 through 3.11 Description: A reflected XSS issue exists in the authorization flow, allowing an attacker to steal...
PHP-Proxy Weak Encryption Vulnerability
PHP-Proxy is a web-based proxy script featuring fast, easy customization and the ability to provide support for complex websites such as YouTube and Facebook. A weak encryption vulnerability in the strrotpass function in vendor/atholn1600/php-proxy/src/helpers.php in PHP-Proxy versions 5.1.0 and...
CVE-2018-19784
The strrotpass function in vendor/atholn1600/php-proxy/src/helpers.php in PHP-Proxy 5.1.0 uses weak cryptography, which makes it easier for attackers to calculate the authorization data needed for local file inclusion...
Inadequate Encryption Strength
The strrotpass function in PHP-Proxy uses weak cryptography, which makes it easier for attackers to calculate the authorization data needed for local file inclusion...
CVE-2018-19784
The CVE-2018-19784 entry concerns PHP-Proxy 5.1.0, where the str_rot_pass function in vendor/atholn1600/php-proxy/src/helpers.php uses weak cryptography. This weak crypto can allow an attacker to compute the authorization data needed for a local file inclusion (LFI). The issue is documented acros...
CVE-2015-1356
Siemens SIMATIC STEP 7 TIA Portal before 13 SP1 determines a user's privileges on the basis of project-file fields that lack integrity protection, which allows remote attackers to establish arbitrary authorization data via a modified file...
Authorization
Siemens SIMATIC STEP 7 TIA Portal before 13 SP1 determines a user's privileges on the basis of project-file fields that lack integrity protection, which allows remote attackers to establish arbitrary authorization data via a modified file...
CVE-2015-1356
Siemens SIMATIC STEP 7 TIA Portal before 13 SP1 determines a user's privileges on the basis of project-file fields that lack integrity protection, which allows remote attackers to establish arbitrary authorization data via a modified file...
CVE-2015-1356
Siemens SIMATIC STEP 7 TIA Portal (pre-13 SP1) stores device user privileges in project files with insufficient integrity protection, enabling modification of authorization data via a manipulated file and leading to privilege escalation. Mitigation: apply Siemens STEP 7 TIA Portal V13 Service Pac...
Windows Kerberos - Elevation of Privilege (MS14-068) Exploit
Exploit for windows platform in category remote exploits !/usr/bin/python MS14-068 Exploit Author ------ Sylvain Monne Contact : sylvain dot monne at solucom dot fr http://twitter.com/bidord import sys, os from random import getrandbits from time import time, localtime, strftime from kek.ccache...
RHEL 6 : krb5 (RHSA-2010:0863)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2010:0863 advisory. Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted...
krb5: KDC uninitialized pointer crash in authorization data handling (MITKRB5-SA-2010-006)
The mergeauthdata function in kdcauthdata.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8.x before 1.8.4 does not properly manage an index into an authorization-data list, which allows remote attackers to cause a denial of service daemon crash, or possibly obtain sensitive...
Fedora 14 : krb5-1.8.2-6.fc14 (2010-15803)
This update incorporates the upstream patch to fix an uninitialized pointer crash in the KDC's authorization data handling routines CVE-2010-1322. It also pulls up a few backports and compilation flag changes from F15. Note that Tenable Network Security has extracted the preceding description blo...
CVE-2010-1322
The mergeauthdata function in kdcauthdata.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8.x before 1.8.4 does not properly manage an index into an authorization-data list, which allows remote attackers to cause a denial of service daemon crash, or possibly obtain sensitive...
RHEL 2.1 : pam (RHSA-2003:028)
Updated PAM packages are now available. These packages correct a bug in pamxauth's handling of authorization data for the root user. Updated 12 March 2003 Added packages for Red Hat Enterprise Linux ES and Red Hat Enterprise Linux WS The pamxauth module is used to forward xauth information from...