CVE-2000-0118

The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing...

RedHat Linux 5.2 i3866.0 - No Logging

RedHat Linux 5.2 i3866.0 - No Logging source: https://www.securityfocus.com/bid/320/info A vulnerability in PAM allows local malicious users to brute force passwords via the su command without any logging of their activity. su is a command that allows users to change identifies by supplying a...

RedHat Linux 5.2 i386/6.0 - No Logging

source: https://www.securityfocus.com/bid/320/info A vulnerability in PAM allows local malicious users to brute force passwords via the su command without any logging of their activity. su is a command that allows users to change identifies by supplying a password. If the password is correct su...

Ethereal 0.8.40.8.50.8.6 tcpdump 3.43.5 alpha - DNS Decode (1)

Ethereal 0.8.40.8.50.8.6 tcpdump 3.43.5 alpha - DNS Decode 1 // source: https://www.securityfocus.com/bid/1165/info A vulnerability exists in the DNS decode capabilities provided as part of the tcpdump sniffer, from LBL, as well as other sniffers, including Ethereal, by Gerald Combs. These sniffe...

CVE-1999-1029

SSH server sshd2 before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showing up in the audit logs...

CVE-1999-0578

A Windows NT system's registry audit policy does not log an event success or failure for security-critical registry keys...

CVE-1999-0579

A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys...

CVE-1999-0577

A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories...

PT-1999-1049 · Novell · Laserfiche

Name of the Vulnerable Software and Affected Versions: Novell NetWare version of LaserFiche affected versions not specified Description: The issue concerns the storage of usernames and passwords in an unencrypted manner. Additionally, it allows administrative changes to be made without proper...

PT-1999-1201 · Microsoft · Windows Nt

Name of the Vulnerable Software and Affected Versions: Windows NT affected versions not specified Description: The issue concerns a Windows NT system's registry audit policy, which does not log an event for success or failure when non-critical registry keys are accessed. Recommendations: At the...

CVE-1999-0795

The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify caches...

PHPFI 1.0FI 2.0FI 2.0 b10 - mylogmlog

PHPFI 1.0FI 2.0FI 2.0 b10 - mylogmlog source: https://www.securityfocus.com/bid/713/info The PHP/FI package which was originally written by Rasmus Lerdorf is an is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific featur...

PHP/FI 1.0/FI 2.0/FI 2.0 b10 - mylog/mlog

source: https://www.securityfocus.com/bid/713/info The PHP/FI package which was originally written by Rasmus Lerdorf is an is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language...

CVE-1999-1061

HP Laserjet printers with JetDirect cards, when configured with TCP/IP, can be configured without a password, which allows remote attackers to connect to the printer and change its IP address or disable logging...

PT-1997-1174 · Xterm · Xterm

Name of the Vulnerable Software and Affected Versions: xterm affected versions not specified Description: A race condition in xterm allows local users to modify arbitrary files via the logging option. Recommendations: At the moment, there is no information about a newer version that contains a fi...

CVE-1999-0575

A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking...

PT-1997-1161 · Microsoft · Windows Nt

Name of the Vulnerable Software and Affected Versions: Windows NT affected versions not specified Description: The issue concerns a Windows NT system's user audit policy, which fails to log events for various system activities. These activities include Logon and Logoff, File and Object Access, Us...

DUO-PSA-2020-004: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2020-004 CVE: CVE-2020-3483 Publication Date: 2020-08-13 Revision Date: 2020-08-13 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Network Gateway DNG product in which some customer-provid...

ROS-2-2129

2.2129 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 Vulnerability in the Exim message forwarding agent, related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

DUO-PSA-2020-004: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2020-004 CVE: CVE-2020-3483 Publication Date: 2020-08-13 Revision Date: 2020-08-13 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Network Gateway DNG product in which some customer-provid...