Lucene search
K

7720 matches found

securityvulns
securityvulns
added 2007/05/25 12:0 a.m.34 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS While Processing SSL Packets

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS While Processing SSL Packets Advisory ID: cisco-sa-20070522-SSL http://www.cisco.com/warp/public/707/cisco-sa-20070522-SSL.shtml Revision 1.0 For Public Release 2007 May 22 1300 UTC GMT -...

Exploits0
F5 Networks
F5 Networks
added 2007/05/16 12:0 a.m.38 views

SOL5534 - Apache mod_proxy message format vulnerability - CAN-2004-0700

Vulnerability description Format string vulnerability in the modproxy hook functions function in sslenginelog.c in modssl before 2.8.19 for Apache before 1.3.31 may allow remote attackers to execute arbitrary messages via format string specifiers in certain log messages for HTTPS that are handled...

7.5CVSS3.4AI score0.05802EPSS
Exploits0
Packet Storm
Packet Storm
added 2007/04/17 12:0 a.m.22 views

garennes-rfi.txt

Garennes 0.6.1 = Remote File Include Vulnerablites D.Script: https://adullact.net/frs/download.php/672/garennes-easyphp-0.6.1.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Exploit:Path/cpe/index.php?repertoireconfig=Shell Exploit:Path/direction/index.php?repertoireconfig=She...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2007/04/11 10:19 a.m.4 views

CVE-2007-1970

Mozilla Firefox does not warn the user about HTTP elements on an HTTPS page when the HTTP elements are dynamically created by a delayed document.write, which allows remote attackers to supply unauthenticated content and conduct phishing attacks...

5CVSS5.6AI score0.00934EPSS
Exploits0References3
Prion
Prion
added 2007/04/11 10:19 a.m.19 views

Code injection

Mozilla Firefox does not warn the user about HTTP elements on an HTTPS page when the HTTP elements are dynamically created by a delayed document.write, which allows remote attackers to supply unauthenticated content and conduct phishing attacks...

5CVSS6.9AI score0.00934EPSS
Exploits0References2
NVD
NVD
added 2007/04/11 10:19 a.m.19 views

CVE-2007-1970

Mozilla Firefox does not warn the user about HTTP elements on an HTTPS page when the HTTP elements are dynamically created by a delayed document.write, which allows remote attackers to supply unauthenticated content and conduct phishing attacks...

5CVSS6.7AI score0.00934EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2007/04/11 10:19 a.m.28 views

CVE-2007-1970

Mozilla Firefox does not warn the user about HTTP elements on an HTTPS page when the HTTP elements are dynamically created by a delayed document.write, which allows remote attackers to supply unauthenticated content and conduct phishing attacks...

5CVSS6AI score0.00934EPSS
Exploits0References1
CVE
CVE
added 2007/04/11 10:0 a.m.64 views

CVE-2007-1970

CVE-2007-1970 involves Mozilla Firefox where dynamic HTTP elements created on HTTPS pages via a delayed document.write can mislead users and enable phishing content to be served from unauthenticated sources. The vulnerability is described with a moderate base score (CVSS v2.0 base 5.0) and relate...

5CVSS6.7AI score0.00934EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2007/04/11 10:0 a.m.24 views

CVE-2007-1970

Mozilla Firefox does not warn the user about HTTP elements on an HTTPS page when the HTTP elements are dynamically created by a delayed document.write, which allows remote attackers to supply unauthenticated content and conduct phishing attacks...

6.7AI score0.00934EPSS
Exploits0References2
myhack58
myhack58
added 2007/04/11 12:0 a.m.28 views

Looked at the foreign cattle people how to tap Microsoft vulnerability-vulnerability warning-the black bar safety net

Ghost boy note: contains a w3wp-dos. c and a PDF document. I also added a download mirror to prevent the official link failure. Information source: 混世魔王 blog w3wp remote DoS due to improper reference of STA COM components in ASP.NET asp.net COM DOS EXP research Cattle below download address. And...

7.6AI score
Exploits0
seebug.org
seebug.org
added 2007/03/12 12:0 a.m.25 views

Cisco多个防火墙产品远程拒绝服务漏洞

Cisco PIX/ASA和防火墙服务模块(FWSM)可提供能够进行状态报文过滤和深层报文检查的防火墙服务。 Cisco PIX 500系列安全设备和Cisco ASA 5500系列自适应安全设备中存在多个安全漏洞: 增强型检查畸形HTTP通讯 +----------------------------------------------- 如果启用了增强型HTTP检查的话,则在检查畸形HTTP请求时Cisco PIX和ASA安全设 备可能崩溃。如果启用了HTTP应用检查的话,配置中会包含有类似于inspect http appfw...

7.1AI score
Exploits0
Prion
Prion
added 2007/02/16 12:28 a.m.11 views

Cross site request forgery (csrf)

Cisco FWSM 3.x before 3.13.18, when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service device reboot via a malformed HTTPS request...

5.4CVSS7.4AI score0.01493EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/02/16 12:28 a.m.20 views

Code injection

Cisco Firewall Services Module FWSM 3.x before 3.13.11, when the HTTPS server is enabled, allows remote attackers to cause a denial of service device reboot via certain HTTPS traffic...

7.8CVSS7.1AI score0.01916EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2007/02/16 12:28 a.m.16 views

CVE-2007-0964

Cisco FWSM 3.x before 3.13.18, when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service device reboot via a malformed HTTPS request...

5.4CVSS6.9AI score0.01493EPSS
Exploits0References4
CVE
CVE
added 2007/02/16 12:0 a.m.62 views

CVE-2007-0966

The CVE-2007-0966 issue affects Cisco's Firewall Services Module (FWSM) versions 3.x prior to 3.1(3.11). When the embedded HTTPS server is enabled, crafted HTTPS traffic can trigger a remote DoS that reboots/reloads the device. Root cause is an error in handling certain HTTPS requests by the embe...

7.8CVSS6.6AI score0.01916EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2007/02/16 12:0 a.m.61 views

CVE-2007-0964

The vulnerability CVE-2007-0964 affects Cisco Firewall Services Module (FWSM) 3.x prior to 3.1(3.18). The root cause is an error when processing malformed HTTPS requests during authentication configured via aaa authentication match or aaa authentication include, which can allow remote attackers t...

5.4CVSS6.9AI score0.01493EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2007/02/16 12:0 a.m.29 views

CVE-2007-0966

Cisco Firewall Services Module FWSM 3.x before 3.13.11, when the HTTPS server is enabled, allows remote attackers to cause a denial of service device reboot via certain HTTPS traffic...

6.6AI score0.01916EPSS
Exploits0References6
Cisco
Cisco
added 2007/02/14 8:43 p.m.26 views

Cisco Firewall Services Module HTTPS Traffic Temporary Denial of Service Vulnerability

Cisco Firewall Services Module versions versions prior to 3.13.11 contain a vulnerability that could allow an unauthenticated, remote attacker to create a denial of service DoS condition. The vulnerability is due to an error when the embedded HTTPS server handles certain types of requests. An...

7.8CVSS6.6AI score0.01916EPSS
Exploits0References1
Cisco
Cisco
added 2007/02/14 8:38 p.m.24 views

Cisco Firewall Services Module HTTPS Request Denial of Service Vulnerability

Cisco Firewall Services Module versions prior to 3.13.18 contain a vulnerability that could allow an unauthenticated, remote attacker to create a temporary denial of service DoS condition. The vulnerability is due to an error when handling malformed HTTPS requests on devices that are configured t...

5.4CVSS6.6AI score0.01493EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2007/02/08 12:0 a.m.19 views

ap205-gen.txt

!/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile admin session gen. 0day! KEEP IT PRIVATE 0day! date: 30/07/06 diwou PHCKSEC c 2001-2006. see templates for code execution ;. use strict; use warnings; use LWP::UserAgent; use MD5; my...

7.4AI score
Exploits0
Rows per page
Query Builder