Lucene search
K

4330 matches found

Cvelist
Cvelist
added 2004/03/16 5:0 a.m.21 views

CVE-2003-1035

The default installation of SAP R/3 46C/D allows remote attackers to bypass account locking by using the RFC API instead of the SAPGUI to conduct a brute force password guessing attack, which does not lock out the account like the SAPGUI does...

6.9AI score0.01544EPSS
Exploits0References4
CVE
CVE
added 2004/03/16 5:0 a.m.61 views

CVE-2003-1035

CVE-2003-1035 describes a vulnerability in the default installation of SAP R/3 46C/D where remote attackers can bypass account lockout by using the RFC API instead of the SAPGUI to perform brute-force password guessing, since the SAPGUI lockout does not occur. The description notes that the RFC-b...

7.5CVSS7.3AI score0.01544EPSS
Exploits0References4Affected Software2
Tenable Nessus
Tenable Nessus
added 2003/06/11 12:0 a.m.28 views

Lotus Domino /./ Request Database Locking DoS

It might be possible to lock out some Lotus Domino databases by requesting them through the web interface with a special request containing a '/./' string in the URL path. This attack is only efficient on databases that are not used by the server. Note that no real attack was performed, so this m...

5CVSS5.4AI score0.01632EPSS
Exploits0References1
NVD
NVD
added 2002/12/31 5:0 a.m.21 views

CVE-2002-2082

FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users...

7.5CVSS6.9AI score0.01622EPSS
Exploits0References3
NVD
NVD
added 2002/12/31 5:0 a.m.15 views

CVE-2002-1722

Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button...

4.6CVSS6.8AI score0.00366EPSS
Exploits0References3
NVD
NVD
added 2002/12/31 5:0 a.m.17 views

CVE-2002-1975

Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods...

5.5CVSS5.5AI score0.00238EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2002/12/31 12:0 a.m.4 views

PT-2002-2636 · Bsd · Bsd

Name of the Vulnerable Software and Affected Versions: Multiple BSD-based operating systems affected versions not specified Description: The issue allows local users to cause a denial of service, specifically execution prevention, by utilizing the flock function to lock the /var/log/acculog file...

5.5CVSS6.4AI score0.00269EPSS
Exploits0References5
securityvulns
securityvulns
added 2002/07/19 12:0 a.m.36 views

File locking DoS in ьгдешзду гешдшешуы

It's possible to cause DoS by putting locks to required files...

1.7AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2002/05/25 12:0 a.m.28 views

File Locking Local Denial of Service; Impact on sendmail

-----BEGIN PGP SIGNED MESSAGE----- File Locking Local Denial of Service Impact on sendmail Reported by lumpy [email protected] Introduction ============ Any application which uses either flock or fcntl style locking or other APIs that use one of these locking methods such as open with OEXLOCK and...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2002/05/24 12:0 a.m.14 views

Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service (1)

Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service 1 / source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2002/05/24 12:0 a.m.30 views

Sendmail 8.9.x/8.10.x/8.11.x/8.12.x - File Locking Denial of Service (2)

// source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious user acquires an exclusive lock on files that Sendmail requires for...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/05/24 12:0 a.m.26 views

Sendmail 8.9.x/8.10.x/8.11.x/8.12.x - File Locking Denial of Service (1)

/ source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious user acquires an exclusive lock on files that Sendmail requires for...

7AI score
Exploits0
exploitpack
exploitpack
added 2002/05/24 12:0 a.m.12 views

Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service (2)

Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service 2 // source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2001/12/28 12:0 a.m.222 views

Mozilla personal security manager /tmp issues

Playing with /tmp a bit this morning I ran into the following issue in mozilla... with mozilla open root@linuxppc root fuser -n file /tmp/.nsmc-0-lock /tmp/.nsmc-0-lock: 3220 3223 3224 3226 3227 3228 3229 root@linuxppc root ps -ef | grep 3220 root 3220 1 0 12:42 ? 00:00:00 ./psm sh-2.05$ id...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2001/12/05 12:0 a.m.68 views

SECURITY.NNOV: file locking and security

Hello bugtraq, Topic : File locking and security Author : 3APA3A [email protected] Affected software : Windows NT 4.0, Windows 2000 and may be another systems Exploitable : Yes Remotely exploitable : No Category : Design flow Background: Application can lock the file after file description ...

7AI score
Exploits0
CVE
CVE
added 2001/09/12 4:0 a.m.63 views

CVE-1999-1077

The CVE-1999-1077 entry describes a local bypass in MacOS 9: the idle lock can be circumvented by triggering the programmers switch or CMD-PWR sequence, which brings up a debugger that disables the lock. Affected product: MacOS 9 idle sessions. Root cause: the idle locking mechanism can be bypas...

4.6CVSS6.9AI score0.00451EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2001/09/12 4:0 a.m.69 views

CVE-1999-1076

The CVE-1999-1076 issue concerns idle locking in MacOS 9. A local attacker can bypass password protection of an idled session by choosing Log Out and then Cancel in the logout-confirm dialog, which returns them to the locked session. Documents consistently reference MacOS 9 as affected and descri...

4.6CVSS6.8AI score0.00451EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
added 2001/08/03 12:0 a.m.37 views

Identix BioLogon Client security bug

Aug 3rd, 2001 10:56am Vendor: http://www.identix.com Software: BioLogon 2.0 Client see http://www.identix.com/itsecurity/softwareprod.html Security flaw in Indentix BioLogon 2.0 Client for Windows Identix's BioLogon software is used as the software "glue" to tie together various biometric devices...

0.6AI score
Exploits0
security_vulns
security_vulns
added 2001/05/12 12:0 a.m.28 views

File locking and security

Topic : File locking and security Author : 3APA3A Affected software : Windows NT 4.0, Windows 2000 and may be another systems Exploitable : Yes Remotely exploitable : No Category : Design flaw Background: Application can lock the file after file description is open by application or in open call...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2000/11/08 12:0 a.m.66 views

vlock vulnerability in RedHat 7.0

I've tried to lock all virtual consoles in RedHat 7.0 using vlock, which is delivered with this release of RedHat. If user root locks all consoles - it's no problem, but if normal user locks consoles then anybody can unlock without typing a password. Try to use it in the following way: 1. logon a...

Exploits0
Rows per page
Query Builder