CVE-2001-1359

Volution clients 1.0.7 and earlier attempt to contact the computer creation daemon CCD when an LDAP authentication failure occurs, which allows remote attackers to fully control clients via a Trojan horse Volution server...

Fw: [net-com] Bug in Mirc v5.82

----- Original Message ----- From: Trax [email protected] To: opers-xnet [email protected] Cc: net-com-xnet [email protected] Sent: Sunday, April 22, 2001 1:40 PM Subject: net-com Bug in Mirc v5.82 There is a bug in mirc v5.82 that allows remote control of clients via /quote and /ctcp not the ctcp...

CFINGERD remote vulnerability

Hi Following the recent habits, I break the advisory into 4 parts: OVERVIEW: --------- There is a critical bug in cfingerd daemon = 1.4.3, a classic format bug that makes possible to acquire full control over the remote machine if it runs the cfingerd program, the configurable and secure finger...

CVE-2001-0285

The CVE-2001-0285 issue affects the A1 HTTP server 1.0a, where a buffer overflow is triggered by a long HTTP request. This vulnerability could allow remote attackers to cause a denial of service and potentially execute arbitrary commands. The provided documents identify the vulnerable component a...

ISC BIND 8.2.x - TSIG Remote Stack Overflow (2)

ISC BIND 8.2.x - TSIG Remote Stack Overflow 2 / copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Slackware 4.0/RedHat 6.2 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleak" bug through UDP ...

CVE-2000-0100

The CVE-2000-0100 entry concerns the SMS Remote Control program, which is installed with insecure permissions that let local users gain privileges by modifying or replacing the program. The NVD entry assigns a CVSS v2.0 base score of 7.2 (HIGH) with LOCAL attack vector, low attack complexity, and...

CVE-2000-0100

The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program...

CVE-2000-0217

The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program...

A funny way to DOS pcANYWHERE8.0 and 9.0

i found a funny thing about pcANYWHERE. when we use pcANYWHERE remote control client to connect the host running pcANYWHERE, at first the statu bar appears "pcANYWHERE connecting..." ,then the login window will appear; but if we press "Cancel" before the login window appears, the pcANYWHERE servi...

Kuang2 the Virus Detection

Kuang2 the Virus was found. Kuang2 the Virus is a program that infects all the executables on the system, as well as set up a server that allows the remote control of the computer. The client program allows files to be browsed, uploaded, downloaded, hidden, etc on the infected machine. The client...

Netopia Timbuktu Pro Remote Control 2.0/5.2.1 - Denial of Service

source: https://www.securityfocus.com/bid/984/info Simple connections and disconnections to Timbuktu ports can hang the authentication process and halt all Timbuktu services. To return to normal functionality, the Timbuktu process will need to be killed and the Timbuktu service is required to be...

CVE-2000-0100

The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program...

Microsoft Systems Management Server 2.0 - Default Permissions

source: https://www.securityfocus.com/bid/945/info The default permissions applied to the directory containing the SMS Remote Control executable allow any user to replace the executable with any other executable. The new executable will run with System privileges after the next reboot. Replace...

mail_bof.txt

Subject: Many kind of POP3/SMTP server softwares for Windows have buffer overflow bug To: [email protected] Many kind of POP3/SMTP server softwares for Windows have buffer overflow bug by The Shadow Penguin Securuty http://shadowpenguin.backsection.net 1. Introduction I confirmed many kin...

nt.iis.odbc.vba.txt

Date: Tue, 25 May 1999 13:59:30 -0500 From: .rain.forest.puppy. To: [email protected] Subject: Advisory: NT ODBC Remote Compromise -- Advisory: NT ODBC Remote Compromise -- By Matthew Astley RCPS http://www.fruitcake.demon.co.uk -- & Rain Forest Puppy WireTrip [email protected] -- Brief Summary...

ibm.netfinity.rcs.nt.txt

Date: Tue, 25 May 1999 13:05:56 -0400 From: Russ To: [email protected] Subject: Security Leak with IBM Netfinity Remote Control Software On May 10th, 1999, Thomas Krug reported to NTBugtraq; Hi, I found a method to run programs like regedit and user manager with admin right using t...

ELS Screen to Screen 1.0 - Multiple Password Vulnerabilities

source: https://www.securityfocus.com/bid/551/info Screen to Screen is a remote control utility for systems runnig MacOS. To use it, you need to have an administrator password. This password is stored in encrypted form in a file called "Authorization" located in the System Folder under...

ELS Screen to Screen 1.0 - Multiple Password Vulnerabilities

ELS Screen to Screen 1.0 - Multiple Password Vulnerabilities source: https://www.securityfocus.com/bid/551/info Screen to Screen is a remote control utility for systems runnig MacOS. To use it, you need to have an administrator password. This password is stored in encrypted form in a file called...

Portal of Doom Backdoor Detection

Portal of Doom is installed. This backdoor allows anyone to partially take the control of the remote system. An attacker may use it to steal your password or prevent your from working properly. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

DeepThroat Backdoor Detection

DeepThroat is installed on the remote host. This backdoor allows anyone to perform actions such as reading files, reading the registry and executing programs. A remote attacker could use this to completely control the system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...