Lucene search
+L

1127 matches found

Exploit DB
Exploit DB
added 2010/11/14 12:0 a.m.28 views

Foxit Reader 4.1.1 - Local Stack Buffer Overflow

Exploit Title : Foxit 4.1.1 Date : 13/11/2010 Author : Sud0 Bug found by : dookie Original POC : https://www.exploit-db.com/exploits/15514/ Software Link : http://www.foxitsoftware.com/downloads/index.php Version : 4.1.1 OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : EIP / SEH Thank...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2010/10/30 12:25 a.m.8 views

21-Year-Old Matt Bergin Shines in U.S. Cyber Challenge, Wins Second Place

Quick Summary Matt Bergin, a 21-year-old sales representative by day, spends his nights hacking into network systems. Recognized Talent: Bergin's skills led to an invitation to the U.S. Cyber Challenge, organized by the White House and U.S. Navy. Impressive Achievement: He secured 2nd place in th...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2010/08/13 5:57 p.m.8 views

Verizon DBIR Challenge Clue #2

This year’s Verizon Data Breach Investigations Report DBIR challenge is well and truly underway. I see where the public contestants are stumped so, here’s a clue to nudge them along: “The “F+” is one of those things that seem like something important at first but turns out to be nothing.” Keep...

1.3AI score
Exploits0References4
ThreatPost
ThreatPost
added 2010/08/11 7:15 p.m.13 views

Verizon DBIR Cryptography Challenge: Here's The First Clue

So, according to a little birdie tweeting in the night, the 2010 Verizon Data Breach Investigations Report DBIR contains another encryption challenge that leads to actual cash prizes. Last year, after I dropped a big clue here, Grant Stavely, Chris Eng and others decoded the hidden message on the...

0.6AI score
Exploits0References5
ThreatPost
ThreatPost
added 2010/07/06 3:51 p.m.15 views

Facebook Employees Crack Admin Security

Senior engineers at Facebook responsible for SRE site reliability engineering challenged Facebook employees to try to compromise him and gain access to Facebook’s administrative system via information obtained from him. They succeeded. Read the full article. TechCrunch...

4.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/06/03 12:0 a.m.21 views

FreeBSD Security Advisory (FreeBSD-SA-10:05.opie.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-10:05.opie.asc SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

9.3CVSS9.4AI score0.21992EPSS
Exploits5References1
ThreatPost
ThreatPost
added 2009/12/21 6:13 p.m.11 views

Cyber Challenge Tests Nation's Top Hackers

CNN reports on the U.S. Cyber Challenge, which is aimed at identifying young people with exceptional computer skills and inspiring them to join the country’s woefully understaffed ranks of cybersecurity specialists...

2.7AI score
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/12/09 10:38 a.m.5 views

SEIL/B1 authentication issue

Overview SEIL/B1 contains an issue in the implementation of the PPP Access Concentrator PPPAC function, which may allow replay attacks to be performed during the authentication process. The PPP Access Concentrator PPPAC function within SEIL/B1 contains an issue in the CHAP and MS-CHAP-V2...

2.6CVSS6.9AI score0.01356EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.22 views

SuSE 11 Security Update : Evolution (SAT Patch Number 778)

camel's NTLM SASL authentication mechanism as used by evolution did not properly validate server's challenge packets. CVE-2009-0582 This update also includes the following non-security fixes : - Fixes a critical crasher in mailer component. - Fixes creation of recurrence monthly items in GroupWis...

5.8CVSS5.3AI score0.02269EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.26 views

SuSE9 Security Update : imap (YOU Patch Number 9885)

This update fixes a logical error in the challenge response authentication mechanism CRAM-MD5. Due to this mistake a remote attacker can gain access to the IMAP server as arbitrary user. CVE-2005-0198 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C...

7.5CVSS5.6AI score0.05091EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2009/04/27 3:37 p.m.8 views

Hidden message in Verizon breach report

Last week, after I dropped clues that the cover of this year’s Verizon Data Breach Investigations Report contained a cryptographic challenge, several readers immediately jumped on the challenge. In this blog post, Veracode’s Chris Eng provides a fun walk-through of how he decoded the pattern of 1...

0.8AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/31 12:0 a.m.25 views

Mandrake Security Advisory MDVSA-2009:078 (evolution-data-server)

The remote host is missing an update to evolution-data-server announced via advisory MDVSA-2009:078. OpenVAS Vulnerability Test $Id: mdksa2009078.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:078 evolution-data-server Authors: Thomas Reinke...

7.5CVSS1.2AI score0.03312EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2009/03/16 2:23 p.m.10 views

evolution-data-server: insufficient checking of NTLM authentication challenge packets

The ntlmchallenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server aka evolution-data-server 2.24.5 and earlier, and 2.25.92 and earlier 2.25.x versions, does not validate whether a certain length value is consistent with the amount o...

5.8CVSS5.9AI score0.02269EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/03/16 2:16 p.m.5 views

evolution-data-server: insufficient checking of NTLM authentication challenge packets

The ntlmchallenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server aka evolution-data-server 2.24.5 and earlier, and 2.25.92 and earlier 2.25.x versions, does not validate whether a certain length value is consistent with the amount o...

5.8CVSS5.9AI score0.02269EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/03/16 2:6 p.m.5 views

evolution-data-server: insufficient checking of NTLM authentication challenge packets

The ntlmchallenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server aka evolution-data-server 2.24.5 and earlier, and 2.25.92 and earlier 2.25.x versions, does not validate whether a certain length value is consistent with the amount o...

5.8CVSS5.9AI score0.02269EPSS
Exploits1References4
OSV
OSV
added 2009/03/14 6:30 p.m.2 views

DEBIAN-CVE-2009-0582

The ntlmchallenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server aka evolution-data-server 2.24.5 and earlier, and 2.25.92 and earlier 2.25.x versions, does not validate whether a certain length value is consistent with the amount o...

5.8CVSS6.4AI score0.02269EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2009/01/29 9:31 a.m.4 views

System: missing public key challenge proof verification in the TPS component

The verifyProof function in the Token Processing System TPS component in Red Hat Certificate System RHCS 7.1 through 7.3 and Dogtag Certificate System 1.0 returns successfully even when token enrollment did not use the hardware key, which allows remote authenticated users with enrollment privileg...

6CVSS5.8AI score0.00775EPSS
Exploits0References4
Nmap
Nmap
added 2008/09/15 5:58 p.m.2532 views

smb-security-mode NSE Script

Returns information about the SMB security level determined by SMB. Here is how to interpret the output: User-level authentication: Each user has a separate username/password that is used to log into the system. This is the default setup of pretty much everything these days. Share-level...

10CVSS9.2AI score0.99448EPSS
Exploits33
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.27 views

FreeBSD Security Advisory (FreeBSD-SA-06:12.opie.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:12.opie.asc ADV FreeBSD-SA-06:12.opie.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft In...

7.2CVSS0.1AI score0.00361EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.58 views

FreeBSD Security Advisory (FreeBSD-SA-06:12.opie.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:12.opie.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.2CVSS7AI score0.00361EPSS
Exploits0References2
Rows per page
Query Builder