org.apache.cxf.fediz.examples:jaxrsSpringSecurityWebapp (>=1.3.0 <=1.4.3), org.apache.cxf.fediz.examples:springPreauthWebapp (>=1.1.0 <=1.4.3) +6 more potentially affected by CVE-2018-8038 via org.apache.cxf.fediz:fediz-spring (>=1.1.0 <=1.4.3)

org.apache.cxf.fediz:fediz-spring MAVEN version =1.1.0, =1.3.0, =1.1.0, =1.1.0, =1.2.0, =1.2.0, =1.1.0, =1.1.0, =1.1.0, =1.4.3 Source cves: CVE-2018-8038 Source advisory: OSV:GHSA-W3GH-G32M-CVHR...

quassel -- multiple vulnerabilities

Gentoo reports: quasselcore: corruption of heap metadata caused by qdatastream leading to preauth remote code execution. Severity: high, by default the server port is publicly open and the address can be requested using the /WHOIS command of IRC protocol. Description: In Qdatastream protocol each...

dropbear/fuzzer-preauth_nomaths: Use-of-uninitialized-value in wrapfd_select

Project: https://secure.ucc.asn.au/hg/dropbear Detailed report: https://oss-fuzz.com/testcase?key=5112123366572032 Project: dropbear Fuzzer: libFuzzerdropbearfuzzer-preauthnomaths Fuzz target binary: fuzzer-preauthnomaths Job Type: libfuzzermsandropbear Platform Id: linux Crash Type:...

Buffer overflow

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, possible buffer overflow or information leak in the functions "smesetfties" and "csrroamissueftpreauthreq" due to incorrect initialization of WEXT callbacks and lack of the checks for...

PHP Melody Multiple Vulnerabilities

Vulnerabilities Summary The following advisory describes three 3 vulnerabilities found in PHP Melody version 2.7.3. PHP Melody is a “self-hosted Video CMS which evolved over the last 9 years. SEO optimization, unbeaten security and speed are advantages you no longer have to compromise on. A truly...

Citrix SD-WAN 9.1.2.26.561201 Remote Command Injection

Exploit Title: Citix SD-WAN logout cookie preauth Remote Command Injection Vulnerablity Date: 02/20/2017 Exploit Author: xort @ Critical Start Vendor Homepage: www.citrix.com Software Link: https://www.citrix.com/downloads/cloudbridge/ Version: 9.1.2.26.561201 Tested on: 9.1.2.26.561201 OS...

Netscaler SD-WAN 9.1.2.26.561201 - Command Injection (Metasploit)

Exploit Title: Citix SD-WAN logout cookie preauth Remote Command Injection Vulnerablity Date: 02/20/2017 Exploit Author: xort @ Critical Start Vendor Homepage: www.citrix.com Software Link: https://www.citrix.com/downloads/cloudbridge/ Version: 9.1.2.26.561201 Tested on: 9.1.2.26.561201 OS...

vBulletin 3.0.x <= 3.8.9, 4.0.x <= 4.2.3, 5.0.x <= 5.2.2 Preauth SSRF Vulnerability

vBulletin is prone to a server-side request forgery SSRF vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

vBulletin 5.1.x - PreAuth 0day Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: Vbulletin 5.1.X unserialize 0day preauth RCE exploit Date: Nov 4th, 2015 Exploit Author: hhjj Vendor Homepage: http://www.vbulletin.com/ Version: 5.1.x Tested on: Debian CVE : I did not discover this exploit, leaked from the IoT...

SUSE-SU-2015:1276-1 Security update for krb5

krb5 was updated to fix four security issues. These security issues were fixed: - CVE-2014-5353: NULL pointer dereference when using a ticket policy name as password name bsc910457. - CVE-2014-5354: NULL pointer dereference when using keyless entries bsc910458. - CVE-2014-5355: Denial of service ...

DEBIAN-CVE-2015-2694

The kdcpreauth modules in MIT Kerberos 5 aka krb5 1.12.x and 1.13.x before 1.13.2 do not properly track whether a client's request has been validated, which allows remote attackers to bypass an intended preauthentication requirement by providing 1 zero bytes of data or 2 an arbitrary realm name,...

Vulnerabilities in the operating system openSUSE, which allow a malicious individual to compromise the accessibility of protected information

The krb5-plugin-preauth-pkinit package of the OpenSUSE operating system has multiple vulnerabilities that, if exploited, could lead to a breach of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities of the krb5-plugin-preauth-pkinit-debuginfo package in the SUSE Linux Enterprise operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. Exploitation of these vulnerabilities can be carried out remotely...

mysql: Remote Preauth User Enumeration flaw

Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending on whether a user name exists, which allows remote attackers to enumerate valid usernames...

BigAnt Server 2.2 - PreAuth Remote SEH Overflow Exploit (0day)

No description provided by source. !/usr/bin/python BigAnt Server Ver 2.2 PreAuth Remote SEH Overflow 0day Matteo Memelli aka ryujin www.be4mind.com - www.gray-world.net 04/13/2008 Tested on Windows 2000 Sp4 English Vulnerable process is AntServer.exe Offset for SEH overwrite is 954 Bytes...

Mikrotik RouterOS sshd (ROSSSH) - Remote Preauth Heap Corruption

No description provided by source...

openSUSE Security Update : krb5 (openSUSE-SU-2010:0709-1)

remote authenticated clients could crash the kdc CVE-2010-1322. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update krb5-3259. The text description of this plugin is C SUSE LLC...

Command injection

The OpenConnectionTask::handleStateHelper function in Imap/Tasks/OpenConnectionTask.cpp in Trojita before 0.4.1 allows man-in-the-middle attackers to trigger use of cleartext for saving a message into a 1 sent or 2 draft folder via a PREAUTH response that prevents later use of the STARTTLS comman...

CVE-2014-2567

The vulnerability CVE-2014-2567 affects Trojita prior to 0.4.1. The issue is in OpenConnectionTask::handleStateHelper in Trojita’s IMAP code, where a PREAUTH response can be exploited by a man-in-the-middle to force saving a message into the sent or draft folder over plaintext, bypassing STARTTLS...

Dolibarr ERP/CMS 3.4.0 SQL Injection

Exploit Title: Dolibarr 3.4.0 SQLi Date: 10/7/2013 Exploit author: drone @dronesec More information: http://forelsec.blogspot.com/2013/10/dolibarr-340-multiple-vulnerabilities.html Vendor homepage: http://www.dolibarr.org/ Software link: Version: 3.4.0 Fixed in: 3.4.1 Tested on: Ubuntu 12.04...