4330 matches found
CVE-2003-1035
The default installation of SAP R/3 46C/D allows remote attackers to bypass account locking by using the RFC API instead of the SAPGUI to conduct a brute force password guessing attack, which does not lock out the account like the SAPGUI does...
CVE-2003-1035
CVE-2003-1035 describes a vulnerability in the default installation of SAP R/3 46C/D where remote attackers can bypass account lockout by using the RFC API instead of the SAPGUI to perform brute-force password guessing, since the SAPGUI lockout does not occur. The description notes that the RFC-b...
Lotus Domino /./ Request Database Locking DoS
It might be possible to lock out some Lotus Domino databases by requesting them through the web interface with a special request containing a '/./' string in the URL path. This attack is only efficient on databases that are not used by the server. Note that no real attack was performed, so this m...
CVE-2002-2082
FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users...
CVE-2002-1722
Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button...
CVE-2002-1975
Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods...
PT-2002-2636 · Bsd · Bsd
Name of the Vulnerable Software and Affected Versions: Multiple BSD-based operating systems affected versions not specified Description: The issue allows local users to cause a denial of service, specifically execution prevention, by utilizing the flock function to lock the /var/log/acculog file...
File locking DoS in ьгдешзду гешдшешуы
It's possible to cause DoS by putting locks to required files...
File Locking Local Denial of Service; Impact on sendmail
-----BEGIN PGP SIGNED MESSAGE----- File Locking Local Denial of Service Impact on sendmail Reported by lumpy [email protected] Introduction ============ Any application which uses either flock or fcntl style locking or other APIs that use one of these locking methods such as open with OEXLOCK and...
Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service (1)
Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service 1 / source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious...
Sendmail 8.9.x/8.10.x/8.11.x/8.12.x - File Locking Denial of Service (2)
// source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious user acquires an exclusive lock on files that Sendmail requires for...
Sendmail 8.9.x/8.10.x/8.11.x/8.12.x - File Locking Denial of Service (1)
/ source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious user acquires an exclusive lock on files that Sendmail requires for...
Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service (2)
Sendmail 8.9.x8.10.x8.11.x8.12.x - File Locking Denial of Service 2 // source: https://www.securityfocus.com/bid/4822/info Sendmail is a MTA for Unix and Linux variants. There is a vulnerability in Sendmail that will lead to a denial of service condition. The vulnerability occurs when a malicious...
Mozilla personal security manager /tmp issues
Playing with /tmp a bit this morning I ran into the following issue in mozilla... with mozilla open root@linuxppc root fuser -n file /tmp/.nsmc-0-lock /tmp/.nsmc-0-lock: 3220 3223 3224 3226 3227 3228 3229 root@linuxppc root ps -ef | grep 3220 root 3220 1 0 12:42 ? 00:00:00 ./psm sh-2.05$ id...
SECURITY.NNOV: file locking and security
Hello bugtraq, Topic : File locking and security Author : 3APA3A [email protected] Affected software : Windows NT 4.0, Windows 2000 and may be another systems Exploitable : Yes Remotely exploitable : No Category : Design flow Background: Application can lock the file after file description ...
CVE-1999-1077
The CVE-1999-1077 entry describes a local bypass in MacOS 9: the idle lock can be circumvented by triggering the programmers switch or CMD-PWR sequence, which brings up a debugger that disables the lock. Affected product: MacOS 9 idle sessions. Root cause: the idle locking mechanism can be bypas...
CVE-1999-1076
The CVE-1999-1076 issue concerns idle locking in MacOS 9. A local attacker can bypass password protection of an idled session by choosing Log Out and then Cancel in the logout-confirm dialog, which returns them to the locked session. Documents consistently reference MacOS 9 as affected and descri...
Identix BioLogon Client security bug
Aug 3rd, 2001 10:56am Vendor: http://www.identix.com Software: BioLogon 2.0 Client see http://www.identix.com/itsecurity/softwareprod.html Security flaw in Indentix BioLogon 2.0 Client for Windows Identix's BioLogon software is used as the software "glue" to tie together various biometric devices...
File locking and security
Topic : File locking and security Author : 3APA3A Affected software : Windows NT 4.0, Windows 2000 and may be another systems Exploitable : Yes Remotely exploitable : No Category : Design flaw Background: Application can lock the file after file description is open by application or in open call...
vlock vulnerability in RedHat 7.0
I've tried to lock all virtual consoles in RedHat 7.0 using vlock, which is delivered with this release of RedHat. If user root locks all consoles - it's no problem, but if normal user locks consoles then anybody can unlock without typing a password. Try to use it in the following way: 1. logon a...