304 matches found
[RT-SA-2010-003] Geo++(R) GNCASTER: Faulty implementation of HTTP Digest Authentication
Advisory: Geo++R GNCASTER: Faulty implementation of HTTP Digest Authentication During a penetration test, RedTeam Pentesting discovered that the GNCaster software has multiple bugs in its implementation of HTTP Digest Authentication. Details ======= Product: Geo++R GNCASTER Affected Versions: =...
Ruby on Rails HTTP Digest Authentication Bypass
The remote web server appears to use a version of Ruby on Rails that contains a vulnerability in its HTTP Digest authentication support. Specifically, the 'authenticateorrequestwithhttpdigest' function in 'lib/actioncontroller/httpauthentication.rb' of the 'actionpack' gem does not treat a 'nil'...
CVE-2006-5639
Unspecified vulnerability in the random number generator in OpenWBEM Web Based Enterprise Management 3.2.0 allows attackers to gain privileges via vectors related to "local or HTTP Digest authentication."...
CVE-2006-5639
Unspecified vulnerability in the random number generator in OpenWBEM Web Based Enterprise Management 3.2.0 allows attackers to gain privileges via vectors related to "local or HTTP Digest authentication."...