Lucene search
K

497 matches found

RedHat Linux
RedHat Linux
added 2012/07/31 6:45 p.m.15 views

krb5: kadmind denial of service

The check16dummy function in lib/kadm5/srv/svrprincipal.c in kadmind in MIT Kerberos 5 aka krb5 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service NULL pointer dereference and daemon crash via a KRB5KDBDISALLOWALLTIX create request that...

4CVSS5.8AI score0.03115EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/12/05 7:41 p.m.4 views

virt-v2v: vnc password protection is missing after vm conversion

virt-v2v before 0.8.4 does not preserve the VNC console password when converting a guest, which allows local users to bypass the intended VNC authentication by connecting without a password...

4.4CVSS5.8AI score0.00467EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.16 views

Gentoo Security Advisory GLSA 200804-24 (dbmail)

The remote host is missing updates announced in advisory GLSA 200804-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

6.8CVSS0.1AI score0.02389EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.10 views

Gentoo Security Advisory GLSA 200804-24 (dbmail)

The remote host is missing updates announced in advisory GLSA 200804-24. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.02389EPSS
Exploits1References2
securityvulns
securityvulns
added 2008/04/22 12:0 a.m.55 views

[ GLSA 200804-24 ] DBmail: Data disclosure

Gentoo Linux Security Advisory GLSA 200804-24 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

6.8CVSS6.7AI score0.02389EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/09/24 12:0 a.m.27 views

FreeBSD : kdm -- passwordless login vulnerability (79b616d0-66d1-11dc-b25f-02e0185f8d72)

The KDE development team reports : KDM can be tricked into performing a password-less login even for accounts with a password set under certain circumstances, namely autologin to be configured and 'shutdown with password' enabled. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descripti...

6.8CVSS5.3AI score0.01015EPSS
Exploits0References3
OSV
OSV
added 2007/09/21 12:0 a.m.29 views

DSA-1376-1 kdebase - programming error

Bulletin has no description...

6.8CVSS5.9AI score0.01015EPSS
Exploits0
securityvulns
securityvulns
added 2006/08/23 12:0 a.m.103 views

AK-Systems terminal unauthorized access

Passwordless VNC access to device is possible...

3.4AI score
Exploits0References1
0day.today
0day.today
added 2006/01/21 12:0 a.m.15 views

linux/x86 Adduser without Password to /etc/passwd 59 bytes

Exploit for linux/x86 platform in category shellcode ========================================================== linux/x86 Adduser without Password to /etc/passwd 59 bytes ========================================================== / linux/x86 adds user 'xtz' without password to /etc/passwd - 59...

7AI score
Exploits0
CVE
CVE
added 2005/05/10 4:0 a.m.43 views

CVE-2004-2004

CVE-2004-2004 affects the SUSE LINUX 9.1 Personal edition Live CD, where the root account is configured without a password. This allows remote attackers to gain root privileges via SSH. The vulnerability is described with a CVSS base score of 10.0 (HIGH) and a network attack vector with no authen...

10CVSS7.1AI score0.03613EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2005/05/02 4:0 a.m.14 views

CVE-2005-1379

The LAM runtime environment package lam-runtime-7.0.6-2mdk on Mandrake Linux installs the mpi user without a password, which allows local users to gain privileges...

6.5AI score0.00364EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/04/30 12:0 a.m.26 views

lam-runtime unauthorized access

Account without password is created during installation process...

3.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/05/11 12:0 a.m.44 views

[NEWS] SMC Routers Passwordless Remote Administration

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2004/02/23 12:0 a.m.30 views

[Full-Disclosure] Proofpoint Protection Server remote MySQL root user vulnerability

Product: Protection Server Version: unknown/Red Hat Linux Developer: Proofpoint URL: www.proofpoint.com Summary: The MySQL server may be remotely access by the "root" user without using a password. Details: The Proofpoint Protection Server is a software product to filter spam and other e-mail...

Exploits0
Positive Technologies
Positive Technologies
added 2003/04/29 12:0 a.m.5 views

PT-2003-1416 · Sgi · Irix

Name of the Vulnerable Software and Affected Versions: IRIX versions 6.5.19 and earlier Description: The issue concerns the LDAP name service nsd not properly verifying if the USERPASSWORD attribute has been provided by an LDAP server. This could allow attackers to log in without a password...

9.8CVSS6.2AI score0.00977EPSS
Exploits0References6
Exploit DB
Exploit DB
added 2001/04/26 12:0 a.m.20 views

IRIX 5.3/6.x - 'netprint' Arbitrary Shared Library Usage

// source: https://www.securityfocus.com/bid/2656/info The 'netprint' utility shipped with SGI Irix systems is used to send print jobs to print spoolers on remote hosts. It is installed setuid root by default. At the command line, 'netprint' accepts an option to specify the network type -n. This...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.18 views

CVE-1999-0200

Windows NT FTP server WFTP with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password...

6.7AI score0.01603EPSS
Exploits0References1
Rows per page
Query Builder