The vulnerability of the CX-Programmer and micro-programming software of PLC Omron CJ2M and Omron CJ2H lies in the reversibility of the password encoding method. This allows attackers to obtain access passwords to the controllers.

The vulnerability of the development environment “CX-Programmer,” which is part of the software suite “CX-One” designed for programming and configuring Omron PLCs, as well as Omron microcontrollers like CJ2M and CJ2H, is related to the reversibility of the password encoding method. Exploiting thi...

The vulnerability of the CX-Programmer development environment, related to the reversibility of the password encoding method, allows attackers to obtain the password necessary to access the controller.

The vulnerability of the development environment CX-Programmer, which is part of the CX-One software suite designed for programming and configuring Omron PLCs, relates to the reversibility of the password encoding method. Exploiting this vulnerability allows a malicious actor to obtain the passwo...

The vulnerability of the control device in the electrical energy sector, SICAM PAS, allows a intruder to access the database.

The vulnerability of the telecontrol device in the electrical energy sector of SICAM PAS is related to the use of strict password encoding. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain privileged access to the database using the TCP port 2638...

Mailtraq 2.1 .0.1302 User Password Encoding Weakness

No description provided by source. source: http://www.securityfocus.com/bid/7923/info It has been reported that Mailtraq does not securely store passwords. Because of this, an attacker may have an increased chance at gaining access to clear text passwords. !/usr/bin/perl $Password = $ARGV0; print...

crypt(): DES encrypted password weakness

The cryptdes aka DES-based crypt function in FreeBSD before 9.0-RELEASE-p2, as used in PHP, PostgreSQL, and other products, does not process the complete cleartext password if this password contains a 0x80 character, which makes it easier for context-dependent attackers to obtain access via an...

tomcat6 Information disclosure in authentication classes

Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /jsecuritycheck with malformed URL encoding of passwords, related to improper error checking in the 1...

tomcat6 Information disclosure in authentication classes

Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /jsecuritycheck with malformed URL encoding of passwords, related to improper error checking in the 1...

Painkiller 1.35 - in-game cd-key alpha-numeric Buffer Overflow (PoC)

Painkiller 1.35 - in-game cd-key alpha-numeric Buffer Overflow PoC / by Luigi Auriemma / include include include include / Painkiller packet's password encoder/decoder 0.1 by Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org INTRODUCTION ============ When you want to...

Painkiller 1.35 - in-game cd-key alpha-numeric Buffer Overflow (PoC)

/ by Luigi Auriemma / include include include include / Painkiller packet's password encoder/decoder 0.1 by Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org INTRODUCTION ============ When you want to join a password protected game server of Painkiller...

Mailtraq 2.1.0.1302 - User Password Encoding

source: https://www.securityfocus.com/bid/7923/info It has been reported that Mailtraq does not securely store passwords. Because of this, an attacker may have an increased chance at gaining access to clear text passwords. !/usr/bin/perl $Password = $ARGV0; print "Passwords should be something...

CuteFTP 4.2 - Default Weak Password Encoding

CuteFTP 4.2 - Default Weak Password Encoding source: https://www.securityfocus.com/bid/3233/info CuteFTP is a popular commercial FTP client for Microsoft Windows systems. CuteFTP v4.2and possibly earlier versions uses a weak system for encoding passwords for accounts on FTP sites. Passwords are...

CuteFTP 4.2 - Default Weak Password Encoding

source: https://www.securityfocus.com/bid/3233/info CuteFTP is a popular commercial FTP client for Microsoft Windows systems. CuteFTP v4.2and possibly earlier versions uses a weak system for encoding passwords for accounts on FTP sites. Passwords are stored in a file called 'sm.dat', and can be...

scx-sa-21.txt

============================================================================ Securax-SA-21 Security Advisory belgian.networking.security Dutch ============================================================================ Topic: CuteFTP uses a weak password encoding scheme Announced: 2001-08-01...

mmdump.pl

Meeting Maker is a networked calendaring/scheduling software package that's estimated to be installed on over 700,000 desktops e.g., see http://www.meetingmaker6.com/presslib/pressrel/mm061499mm6.htm. Meeting Maker is a registered trademark of ON Technology Corporation. Clients send passwords to ...