Lucene search
+L

8542 matches found

CVE
CVE
added 2006/06/21 11:0 p.m.57 views

CVE-2006-3127

CVE-2006-3127 describes a memory leak in Network Security Services (NSS) 3.11 used by Sun Java Enterprise System (2003Q4–2005Q1) and Java System Directory Server 5.2. The issue allows remote attackers to trigger a denial of service by performing a large number of RSA cryptographic operations, lea...

7.8CVSS6.6AI score0.03098EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2006/06/21 11:0 p.m.27 views

CVE-2006-3127

Memory leak in Network Security Services NSS 3.11, as used in Sun Java Enterprise System 2003Q4 through 2005Q1 and Java System Directory Server 5.2, allows remote attackers to cause a denial of service memory consumption by performing a large number of RSA cryptographic operations...

6.5AI score0.03098EPSS
Exploits0References8
NVD
NVD
added 2006/05/31 10:2 p.m.19 views

CVE-2006-2710

Secure Elements Class 5 AVR aka C5 EVM before 2.8.1 uses the same invariant RSA key for all installations, which allows remote attackers with the key to decrypt communications...

5CVSS6.6AI score0.01892EPSS
Exploits0References6
Prion
Prion
added 2006/05/31 10:2 p.m.20 views

Design/Logic Flaw

Secure Elements Class 5 AVR aka C5 EVM before 2.8.1 uses the same invariant RSA key for all installations, which allows remote attackers with the key to decrypt communications...

5CVSS7.2AI score0.01892EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2006/05/31 10:0 p.m.45 views

CVE-2006-2710

Summary: CVE-2006-2710 affects Secure Elements Class 5 AVR (C5 EVM) before 2.8.1. Root cause: same invariant RSA key used across all installations, permitting remote attackers with the key to decrypt communications. Impact: confidentiality of communications is compromised; integrity/availability ...

5CVSS6.7AI score0.01892EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/05/31 10:0 p.m.28 views

CVE-2006-2710

Secure Elements Class 5 AVR aka C5 EVM before 2.8.1 uses the same invariant RSA key for all installations, which allows remote attackers with the key to decrypt communications...

6.6AI score0.01892EPSS
Exploits0References6
CERT
CERT
added 2006/05/30 12:0 a.m.20 views

Secure Elements Class 5 AVR uses the same RSA key for all installations

Overview Secure Elements Class 5 AVR uses the same RSA key for all installations. This may allow a remote attacker to decrypt communications between systems. Description Class 5 AVR Secure Elements Class 5 AVR Automated Vulnerability Remediation is a security product that monitors and enforces...

7.2AI score
Exploits0References1
CVE
CVE
added 2006/03/19 11:0 p.m.62 views

CVE-2005-4734

CVE-2005-4734 describes a stack-based buffer overflow in IISWebAgentIF.dll of the RSA Authentication Agent for Web (SecurID Web Agent) for IIS. A long url parameter in the Redirect method can allow remote attackers to execute arbitrary code. Affected are RSA SecurID Web Agent for IIS versions 5.2...

6.4CVSS8AI score0.54485EPSS
Exploits8References5Affected Software1
Cvelist
Cvelist
added 2006/03/19 11:0 p.m.37 views

CVE-2005-4734

Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web aka SecurID Web Agent 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method...

8.1AI score0.54485EPSS
Exploits8References5
NVD
NVD
added 2005/12/31 5:0 a.m.30 views

CVE-2005-4734

Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web aka SecurID Web Agent 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method...

6.4CVSS8.1AI score0.54485EPSS
Exploits8References5
Metasploit
Metasploit
added 2005/12/26 2:34 p.m.32 views

Microsoft IIS ISAPI RSA WebAgent Redirect Overflow

This module exploits a stack buffer overflow in the SecurID Web Agent for IIS. This ISAPI filter runs in-process with inetinfo.exe, any attempt to exploit this flaw will result in the termination and potential restart of the IIS service. This module requires Metasploit:...

6.4CVSS0.5AI score0.54485EPSS
Exploits8
Saint
Saint
added 2005/11/30 12:0 a.m.29 views

RSA SecurID Web Agent for IIS redirect buffer overflow

Added: 11/30/2005 CVE: CVE-2005-4734 BID: 26424 OSVDB: 20151 Background RSA SecurID Web Agent for IIS provides access control for IIS web servers using one-time authentication tokens. Problem A buffer overflow in IISWebAgentIF.dll could allow a remote attacker to execute arbitrary commands using ...

6.4CVSS7.8AI score0.54485EPSS
Exploits8
Saint
Saint
added 2005/11/30 12:0 a.m.24 views

RSA SecurID Web Agent for IIS redirect buffer overflow

Added: 11/30/2005 CVE: CVE-2005-4734 BID: 26424 OSVDB: 20151 Background RSA SecurID Web Agent for IIS provides access control for IIS web servers using one-time authentication tokens. Problem A buffer overflow in IISWebAgentIF.dll could allow a remote attacker to execute arbitrary commands using ...

6.4CVSS7.9AI score0.54485EPSS
Exploits8
Saint
Saint
added 2005/11/30 12:0 a.m.62 views

RSA SecurID Web Agent for IIS redirect buffer overflow

Added: 11/30/2005 CVE: CVE-2005-4734 BID: 26424 OSVDB: 20151 Background RSA SecurID Web Agent for IIS provides access control for IIS web servers using one-time authentication tokens. Problem A buffer overflow in IISWebAgentIF.dll could allow a remote attacker to execute arbitrary commands using ...

6.4CVSS7.8AI score0.54485EPSS
Exploits8
Saint
Saint
added 2005/11/30 12:0 a.m.16 views

RSA SecurID Web Agent for IIS redirect buffer overflow

Added: 11/30/2005 CVE: CVE-2005-4734 BID: 26424 OSVDB: 20151 Background RSA SecurID Web Agent for IIS provides access control for IIS web servers using one-time authentication tokens. Problem A buffer overflow in IISWebAgentIF.dll could allow a remote attacker to execute arbitrary commands using ...

6.4CVSS7.8AI score0.54485EPSS
Exploits8
EUVD
EUVD
added 2005/11/16 9:17 p.m.4 views

EUVD-2002-2186

Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret...

10CVSS7.8AI score0.05438EPSS
Exploits0References4
CVE
CVE
added 2005/11/16 9:17 p.m.40 views

CVE-2002-2207

CVE-2002-2207 describes a buffer overflow in ssldump (version 0.9b2 and earlier) when running in decryption mode, allowing remote attackers to execute arbitrary code via a long RSA PreMasterSecret. The vulnerability is triggered over the network and is rated high severity (CVSS 2.0: AV:N/AC:L/Au:...

10CVSS7.9AI score0.05438EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2005/11/16 9:17 p.m.31 views

CVE-2002-2207

Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret...

10CVSS8.2AI score0.05438EPSS
Exploits0
Cvelist
Cvelist
added 2005/11/16 9:17 p.m.25 views

CVE-2002-2207

Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret...

7.9AI score0.05438EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.22 views

cfengine AuthenticationDialogue vulnerability

Cfengine is running on this remote host. cfengine cfservd is reported prone to a remote heap-based buffer overrun vulnerability. The vulnerability presents itself in the cfengine cfservd AuthenticationDialogue function. The issue exists due to a lack of sufficient boundary checks performed on...

10CVSS0.3AI score0.19508EPSS
Exploits2
Rows per page
Query Builder