2876 matches found
broadcast-rfi.txt
================================================================================================================= o Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerability Software : Broadcast Machine version 0.1 Vendor : http://code.google.com/p/broadcastmachine/ View Source :...
FreeBSD Security Advisory (FreeBSD-SA-05:06.iir.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:06.iir.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
samba buffer overflow
Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests...
Cisco Security Advisory: Wireless ARP Storm Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Wireless ARP Storm Vulnerabilities Advisory ID: cisco-sa-20070724-arp http://www.cisco.com/warp/public/707/cisco-sa-20070724-arp.shtml Revision 1.0 For Public Release 2007 July 24 1600 UTC GMT -...
Cisco Security Advisory: Multiple Vulnerabilities in the Cisco Wireless Control System
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in the Cisco Wireless Control System Advisory ID: cisco-sa-20070412-wcs http://www.cisco.com/warp/public/707/cisco-sa-20070412-wcs.shtml Revision 1.0 For Public Release 2007 April 12 1600 UTC GMT -...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in 1 PreSearch.html and 2 PreSearch.class in Cisco Secure Access Control Server ACS, VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator, Unified Video Advantage...
CVE-2007-0931
The CVE describes a heap-based buffer overflow in the management interfaces of Aruba Mobility Controllers (200, 800, 2400, 6000) and Alcatel-Lucent OmniAccess Wireless (43xx, 6000). The underlying flaw allows remote attackers to trigger a denial of service (process crash) and potentially execute ...
CVE-2007-0931
Heap-based buffer overflow in the management interfaces in 1 Aruba Mobility Controllers 200, 800, 2400, and 6000 and 2 Alcatel-Lucent OmniAccess Wireless 43xx and 6000 allows remote attackers to cause a denial of service process crash and possibly execute arbitrary code via long credential string...
CVE-2007-0932
The 1 Aruba Mobility Controllers 200, 600, 2400, and 6000 and 2 Alcatel-Lucent OmniAccess Wireless 43xx and 6000 do not properly implement authentication and privilege assignment for the guest account, which allows remote attackers to access administrative interfaces or the WLAN...
CVE-2006-4773
Sun StorEdge 6130 Array Controllers with firmware 06.12.10.11 and earlier allow remote attackers to cause a denial of service controller reboot via a flood of traffic on the LAN...
CVE-2006-4773
Sun StorEdge 6130 Array Controllers with firmware 06.12.10.11 and earlier allow remote attackers to cause a denial of service controller reboot via a flood of traffic on the LAN...
CVE-2006-4773
CVE-2006-4773 affects Sun StorEdge 6130 Array Controllers with firmware 06.12.10.11 and earlier. The vulnerability allows a remote attacker to cause a denial of service by flooding the LAN, triggering a controller reboot. The available documents provide this impact but do not include exploit code...
security flaw
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting XSS attacks via unspecified vectors involving the...
security flaw
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting XSS attacks via unspecified vectors involving the...
security flaw
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting XSS attacks via unspecified vectors involving the...
DEBIAN-CVE-2006-1732
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting XSS attacks via unspecified vectors involving the...
samba -- Exposure of machine account credentials in winbind log files
Samba Security Advisory: The machine trust account password is the secret shared between a domain controller and a specific member server. Access to the member server machine credentials allows an attacker to impersonate the server in the domain and gain access to additional information regarding...
CVE-2005-3482
Cisco 1200, 1131, and 1240 series Access Points, when operating in Lightweight Access Point Protocol LWAPP mode and controlled by 2000 and 4400 series Airespace WLAN controllers running 3.1.59.24, allow remote attackers to send unencrypted traffic to a secure network using frames with the MAC...
CVE-2005-3482
Cisco 1200, 1131, and 1240 series Access Points, when operating in Lightweight Access Point Protocol LWAPP mode and controlled by 2000 and 4400 series Airespace WLAN controllers running 3.1.59.24, allow remote attackers to send unencrypted traffic to a secure network using frames with the MAC...
Cisco Security Advisory: Cisco Airespace Wireless LAN Controllers Allow Unencrypted Network Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Airespace Wireless LAN Controllers Allow Unencrypted Network Access Document ID: 68034 Revision 1.0 For Public Release 2005 November 02 1500 UTC GMT -...