iDEFENSE Security Advisory 04.05.05: Computer Associates eTrust Intrusion Detection System CPImportKey DoS

Computer Associates eTrust Intrusion Detection System CPImportKey Denial of Service Vulnerability iDEFENSE Security Advisory 04.05.05 www.idefense.com/application/poi/display?id=223&type=vulnerabilities April 05, 2005 I. BACKGROUND Computer Associates International, Inc.'s CA eTrust Intrusion...

CVE-2004-2269

Stack-based buffer overflow in pads.c in Passive Asset Detection System Pads might allow local users to execute arbitrary code via a long report file name argument. NOTE: since Pads is not normally installed setuid, this may not be a vulnerability...

CVE-2004-2269

Stack-based buffer overflow in pads.c in Passive Asset Detection System Pads might allow local users to execute arbitrary code via a long report file name argument. NOTE: since Pads is not normally installed setuid, this may not be a vulnerability...

linux/x86 kill snort 151 bytes

linux/x86 kill snort 151 bytes. Shellcode exploit for linx86 platform / x86 linux "snort IDS" shutter shellcode size 151 By nob0dy // find your own reality / / char snortshuttershellcode = "\xeb\x03\x5e\xeb\x05\xe8\xf8\xff\xff" "\xff\x83\xc6\x0d\x31\xc9\xb1\x80\x80"...

linux/x86 chmod 666 shadow ENCRYPT 75 bytes

Exploit for linux/x86 platform in category shellcode =========================================== linux/x86 chmod 666 shadow ENCRYPT 75 bytes =========================================== / !!!!!! ANTI IDS SHELLCODE !!!!!! email protected 0x17abril0x7d2 !!!!! ENCRIPTADA !!!!! 75 bytes chmod 666...

[Full-Disclosure] SRT2003-12-04-0723 - PLDaniels Ebola remote overflow

Secure Network Operations, Inc. http://www.secnetops.com/research Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

Demarc Puresecure v1.6 - Plaintext password issue -

According to Demarc Puresecure's Website; Demarc PureSecureTM is a one of a kind, Total Intrusion Detection System TIDS, which provides an unsurpassed level of comprehensive security. For the first time you will be able to reliably prevent, detect, and deter internal and external threats to your...

Easy DoS on Kaspersky Anti-Hacker v1.0

Product: Kaspersky Anti-Hacker Version: 1.0 Website: http://www.kaspersky.com/buyonline.html?info=967571 1. Introduction --------------- Kaspersky Anti-Hacker is a Kaspersky Lab personal firewall product. As other products in this category, Kaspersky Anti-Hacker allows creation of packet and...

ISS Security Brief: Snort RPC Preprocessing Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security Brief March 3, 2003 Snort RPC Preprocessing Vulnerability Synopsis: ISS X-Force has discovered a remotely exploitable buffer overflow condition in Snort. Snort is an open source intrusion detection system. A buffer overflow fla...

CVE-2001-0669

CVE-2001-0669 affects multiple IDS products (Cisco Secure IDS, Cisco Catalyst 6000 IDS Module, Dragon Sensor 4.x, Snort before 1.8.1, ISS RealSecure Network Sensor 5.x/6.x before XPU 3.2, and ISS RealSecure Server Sensor 5.5/6.0 for Windows) where an attacker can bypass HTTP attack detection by u...

Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability

...

CVE-2000-0712

Linux Intrusion Detection System LIDS 0.9.7 allows local users to gain root privileges when LIDS is disabled via the security=0 boot option...

CVE-2000-0712

Linux Intrusion Detection System LIDS 0.9.7 allows local users to gain root privileges when LIDS is disabled via the security=0 boot option...

CVE-2000-0712

CVE-2000-0712 affects Linux Intrusion Detection System (LIDS) 0.9.7. The issue allows local users to gain root privileges when LIDS is disabled via the security=0 boot option. The provided documents state the affected component and the condition that enables elevation but do not include explicit ...

LIDS severe bug

Hi. Didn't see a message regarding this one here, so here we go... This is from the Linux Intrusion Detection System LIDS/www.lids.org mailing list. Basically LIDS 0.9.7 for kernel 2.2.16 breaks the system so that every user is acting as uid=0 when the system has been started with /security=0 at...

CVE-2000-0559

eTrust Intrusion Detection System formerly SessionWall-3 uses weak encryption XOR to store administrative passwords in the registry, which allows local users to easily decrypt the passwords...

CVE-2000-0559

The CVE-2000-0559 entry describes a vulnerability in eTrust Intrusion Detection System (formerly SessionWall-3) where administrative passwords stored in the registry are protected with weak XOR encryption. The underlying issue is the weak encryption implementation, enabling a local attacker to de...

CVE-2000-0559

eTrust Intrusion Detection System formerly SessionWall-3 uses weak encryption XOR to store administrative passwords in the registry, which allows local users to easily decrypt the passwords...

CVE-1999-0598

A network intrusion detection system IDS does not properly handle packets that are sent out of order, allowing an attacker to escape detection...

CVE-1999-0601

CVE-1999-0601 affects a network intrusion detection system (IDS) and is caused by improper handling of data within TCP handshake packets. The public records (NVD, CVE list, Red Hat entry) describe the vulnerability as an IDS failing to process TCP handshake data correctly, with a base CVSS v2.0 s...