Race condition

Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-password account is enabled, allows attackers to bypass password authentication and login to any account via multiple attempts to login to the blank-password account, followed by selection of an arbitrary account...

OpenSSL 0.9.8c-1 < 0.9.8g-9 (Debian and Derivatives) - Predictable PRNG Brute Force SSH (Ruby)

!/usr/bin/ruby Debian SSH Key Tester L4teral This tool helps to find user accounts with weak SSH keys that should be regenerated with an unaffected version of openssl. You will need the precalculated keys provided by HD Moore See http://metasploit.com/users/hdm/tools/debian-openssl/ for further...

Mandrake Linux Security Advisory : postgresql (MDKSA-2007:188)

PostgreSQL 8.1 and probably later and earlier versions, when local trust authentication is enabled and the Database Link library dblink is installed, allows remote attackers to access arbitrary accounts and execute arbitrary SQL queries via a dblink host parameter that proxies the connection from...

DEBIAN-CVE-2007-1558

The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle MITM attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including 1 Thunderbird 1.x before 1.5.0.12 and...

Hacking knowledge series of the Windows NT attacks Encyclopedia-vulnerability warning-the black bar safety net

Typically, the attacker will take the following way of the NT to initiate offense: 1, guess the decryption code hand-guess, automated guessing, the listener guessing; to 2, The remote exploit attack buffer overflow, denial of serviceDDos; the 3, upgrade permissions siphon information, modify the...

Fedora Core 4 : vnc-4.1.1-10.1.fc4 (2006-557)

Security update: by altering a client it was possible to bypass password authentication in vnc. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possib...

Fedora Core 5 : vnc-4.1.1-37.fc5 (2006-558)

Security update: by altering a client it was possible to bypass password authentication in vnc. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possib...

RealVNC Password Authentication Bypass (CVE-2006-2369)

...

VNC Security Type Enforcement Failure Remote Authentication Bypass

The version of VNC server running on the remote host is affected by the following vulnerabilities : - A flaw exists in RealVNC due to an error when handling password authentication. A remote attacker can exploit this to bypass authentication by using a specially crafted request in which the clien...

linux/x86 Password Authentication portbind Shellcode 166 bytes

linux/x86 Password Authentication portbind Shellcode 166 bytes. Shellcode exploit for linx86 platform / linux-x86-authportbind.c - AUTH portbind shellcode 166 bytes for Linux/x86 Copyright c 2006 Gotfault Security portbind shellcode that bind's a shell on port 64713/tcp and requests a user...

linux/x86 Password Authentication portbind Shellcode 166 bytes

Exploit for linux/x86 platform in category shellcode ============================================================== linux/x86 Password Authentication portbind Shellcode 166 bytes ============================================================== / linux-x86-authportbind.c - AUTH portbind shellcode 16...

CVE-2006-0604

check.php in Hinton Design phphg Guestbook 1.2 does not check the user password when authenticating via cookies, which allows remote attackers to gain unauthorized access...

Ubuntu 4.10 : openssh information leakage (USN-34-1)

@Mediaservice.net discovered two information leaks in the OpenSSH server. When using password authentication, an attacker could test whether a login name exists by measuring the time between failed login attempts, i. e. the time after which the 'password:' prompt appears again. A similar issue...

Windows password weakness

Added: 12/19/2005 CVE: CVE-1999-0503 Background Passwords are the most commonly used method of authenticating users to a server. The combination of a login name and password is used to verify the identity of a user requesting access, and to determine what parts of the server the user has permissi...

Windows password weakness

Added: 12/19/2005 CVE: CVE-1999-0503 Background Passwords are the most commonly used method of authenticating users to a server. The combination of a login name and password is used to verify the identity of a user requesting access, and to determine what parts of the server the user has permissi...

Windows password weakness

Added: 12/19/2005 CVE: CVE-1999-0503 Background Passwords are the most commonly used method of authenticating users to a server. The combination of a login name and password is used to verify the identity of a user requesting access, and to determine what parts of the server the user has permissi...

[SVadvisory] - SQL injection in OpenBook 1.2.2

SVadvisory12 Title: SQl injection Product: OpenBook Version: 1.2.2 Site: http://openbook.sourceforge.net/ Vulnerabilities Code: function authuser$userid, $password global $HTTPPOSTVARS; global $admintable; $userid=$HTTPPOSTVARS'userid'; $password=$HTTPPOSTVARS'password'; dbconnect; $query="SELECT...

CVE-2001-1475

SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key VK is generated...

CVE-2001-1475

SSH before 2.0, when using RC4 and password authentication, is vulnerable to replaying messages until a new server key is generated. The affected component is the SSH protocol implementation prior to 2.0, with the underlying issue arising from RC4-based session handling that allows remote attacke...

USN-34-1: OpenSSH information leakage

@Mediaservice.net discovered two information leaks in the OpenSSH server. When using password authentication, an attacker could test whether a login name exists by measuring the time between failed login attempts, i. e. the time after which the "password:" prompt appears again. A similar issue...