Lucene search
K

831 matches found

securityvulns
securityvulns
added 2007/08/28 12:0 a.m.49 views

eyeOS checksum prediction

Subject: eyeOS checksum prediction Author: Andrej Komarov [email protected] eyeOS operates with special intermediate checksums in plaintext. Without its validation it is impossible to make new actions to login, start new services. There is way to predict eyeOS checksum. If it is automated from...

0.9AI score
Exploits0
ALT Linux
ALT Linux
added 2007/08/07 12:0 a.m.50 views

Security fix for the ALT Linux 9 package openssl10 version 0.9.8d-alt3

Aug. 7, 2007 Dmitry V. Levin 0.9.8d-alt3 - Fixed side-channel attack on private keys CVE-2007-3108, RH245732, http://cvs.openssl.org/chngview?cn=16275. - Mitigated branch prediction attacks RH250573, http://cvs.openssl.org/chngview?cn=16077. - Changed SSL/TLS server implementation to be stricter...

1.2CVSS7AI score0.00409EPSS
Exploits1
ALT Linux
ALT Linux
added 2007/08/07 12:0 a.m.43 views

Security fix for the ALT Linux 8 package openssl10 version 0.9.8d-alt3

Aug. 7, 2007 Dmitry V. Levin 0.9.8d-alt3 - Fixed side-channel attack on private keys CVE-2007-3108, RH245732, http://cvs.openssl.org/chngview?cn=16275. - Mitigated branch prediction attacks RH250573, http://cvs.openssl.org/chngview?cn=16077. - Changed SSL/TLS server implementation to be stricter...

1.2CVSS6.8AI score0.00409EPSS
Exploits1
ALT Linux
ALT Linux
added 2007/08/07 12:0 a.m.57 views

Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8d-alt3

Aug. 7, 2007 Dmitry V. Levin 0.9.8d-alt3 - Fixed side-channel attack on private keys CVE-2007-3108, RH245732, http://cvs.openssl.org/chngview?cn=16275. - Mitigated branch prediction attacks RH250573, http://cvs.openssl.org/chngview?cn=16077. - Changed SSL/TLS server implementation to be stricter...

1.2CVSS7AI score0.00409EPSS
Exploits1
NVD
NVD
added 2007/05/21 11:30 p.m.12 views

CVE-2007-2782

Packeteer PacketShaper uses fixed increments in TCP initial sequence number ISN values, which allows remote attackers to predict the ISN value, and perform session hijacking or disruption...

7.5CVSS6.7AI score0.01601EPSS
Exploits0References6
myhack58
myhack58
added 2006/06/25 12:0 a.m.16 views

Graphic explanation: hacking demo-vulnerability warning-the black bar safety net

A simple"hacker"invasion TCP/IP Protocol sequence number prediction attack is the most simple"hacker"invasion, is also a system security the biggest threat. On the network, each computer has a unique IP address, the computer of the target IP address and a unique sequence number loaded in the...

0.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.28 views

ISC BIND DNS Query ID Field Prediction Cache Poisoning (deprecated)

Binary data 4578.prm...

6.8CVSS7.3AI score0.95182EPSS
Exploits20References2
FreeBSD Advisory
FreeBSD Advisory
added 2003/02/24 12:0 a.m.2 views

FreeBSD-SA-03:03.syncookies

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:03.syncookies Security Advisory The FreeBSD Project Topic: Brute force attack on SYN cookies Category: core Module: sysnetinet Announced: 2003-02-24 Credits:...

5.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2002/06/05 12:0 a.m.100 views

Cisco IOS TCP Sequence Prediction Connection Hijacking (CSCds04747)

Cisco IOS Software contains a flaw that permits the successful prediction of TCP Initial Sequence Numbers. This vulnerability is present in all released versions of Cisco IOS software running on Cisco routers and switches. It only affects the security of TCP connections that originate or terminat...

7.5CVSS7.3AI score0.18125EPSS
Exploits0References2
NVD
NVD
added 2001/07/10 4:0 a.m.32 views

CVE-2001-1141

The Pseudo-Random Number Generator PRNG in SSLeay and OpenSSL before 0.9.6b allows attackers to use the output of small PRNG requests to determine the internal state information, which could be used by attackers to predict future pseudo-random numbers...

5CVSS6.3AI score0.04988EPSS
Exploits0References10
securityvulns
securityvulns
added 2000/08/22 12:0 a.m.18 views

Уязвимость в ActiveCard

PIN-код генерируется по время-зависимому алгоритму, что позволяет предсказать значительную часть цифрового кода...

0.8AI score
Exploits0
Rows per page
Query Builder