9421 matches found
CVE-2002-0065
Funk Software Proxy Host 3.x uses weak encryption for the Proxy Host password, which allows local users to gain privileges by recovering the passwords from the PHOST.INI file or the Windows registry...
Security holes : Linker, Pharao
Product1 : Linker http://enproject.codelib.co.kr Versions : 2.0 Problems : - Reading in HD - Informations recovery passwords, DBHOST, DBUSER,... Exploits : - /imageview.php?uid=../function/passinfo.php or /imageview.php?uid=../function/baseinfo.php - Set cookies : "adminlogin","1"...
Security holes in Powerboard forum
Product : Powerboards http://powerboards.sourceforge.net/ Versions : 2.2b and less ? Problems : - Cross Site Scripting - Path disclosure - Access to the administration - Access to users accounts without password - Recovery of admins/users passwords - Suppression of messages - Writing on the hard...
Получение пароля AOL Instant Messenger
Можно получить пароль AOL Instant Messenger создав учетную запись AOL с тем же именем...
Snort 1.8.3 - ICMP Denial of Service
source: https://www.securityfocus.com/bid/3849/info Snort is a network intrusion detection system IDS. It is originally written for Linux and Unix systems, although it has also been ported to run under Microsoft Windows. Snort is capable of flexible and powerful content analysis of network traffi...
CVE-2001-1546
Pathways Homecare 6.5 uses weak encryption for user names and passwords, which allows local users to gain privileges by recovering the passwords from the pwhc.ini file...
PT-2001-2631 · Pathways · Pathways Homecare
Name of the Vulnerable Software and Affected Versions: Pathways Homecare version 6.5 Description: The issue concerns the use of weak encryption for user names and passwords. This weakness allows local users to gain privileges by recovering the passwords from the pwhc.ini file. Recommendations: Fo...
Microsoft Windows XP2000 - GDI Denial of Service
Microsoft Windows XP2000 - GDI Denial of Service source: https://www.securityfocus.com/bid/3481/info The Windows Graphics Device Interface GDI is a set of Application Programming Interfaces APIs used to display graphical output. A vulnerability exists which causes the GDI to invoke a Kernel Mode...
CVE-1999-1524
FlowPoint DSL router firmware versions prior to 3.0.8 allows a remote attacker to exploit a password recovery feature from the network and conduct brute force password guessing, instead of limiting the feature to the serial console port...
CVE-2001-0597
Zetetic Secure Tool for Recalling Important Passwords STRIP 0.5 and earlier for the PalmOS allows a local attacker to recover passwords via a brute force attack. This attack is made feasible by STRIP's use of SysRandom, which is seeded by TimeGetTicks, and an implementation flaw which vastly...
Security Advisory: Multiple SSH vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Security Advisory: Multiple SSH vulnerabilities Revision 1.0 - INTERIM For public release 2001 June 27 08:00 UTC -0800 Summary Three different Cisco product lines are susceptible to multiple vulnerabilities in the Secure Shell SSH protocol. These issues are...
CVE-2001-0261
Microsoft Windows 2000 Encrypted File System does not properly destroy backups of files that are encrypted, which allows a local attacker to recover the text of encrypted files...
CVE-2001-0259
ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file...
CVE-2001-0081
Technical details about CVE-2001-0081 are not publicly provided in the supplied documents. Monitor for updates from vendors and security advisories.
Dallas Semiconductor iButton DS1991 vulnerable to dictionary attack
Overview The Dallas Semiconductor iButton DS1991 is vulnerable to a dictionary attack, allowing an intruder to recover passwords. Description The Dallas Semiconductor iButton DS1911 stores 1 kilobyte of data in 3 separate password-protected areas. It includes functionality intended to prevent...
CVE-2001-0152
The password protection option for the Compressed Folders feature in Plus! for Windows 98 and Windows Me writes password information to a file, which allows local users to recover the passwords and read the compressed folders...
Solaris 2.6 - FTP Core Dump Shadow Password Recovery
Solaris 2.6 - FTP Core Dump Shadow Password Recovery source: https://www.securityfocus.com/bid/2601/info Solaris is the variant of the UNIX Operating System distributed by Sun Microsystems. Solaris is designed as a scalable operating system for the Intel x86 and Sun Sparc platforms, and operates ...
Security Bulletin MS01-019
---------------------------------------------------------------------- Title: Passwords for Compressed Folders are Recoverable Date: 28 March 2001 Software: Plus! 98 and Windows Me Impact: Data compression passwords can be recovered. Bulletin: MS01-019 Microsoft encourages customers to review the...
Проблемы в файловых системах (ufs/ext2fs data recovery)
Локальный пользователь может получить доступ к содержимому файлов, которые были удалены...
Заткнуты очередные дsрки в IE (cached content и другие)
Вохможно найти физическое расположение кэша, что позволяет запустить CHM-файлы. Кроме того, есть другие проблемы...