Lucene search
+L

2880 matches found

securityvulns
securityvulns
added 2006/06/05 12:0 a.m.24 views

SMS "messages.php" SQL injection

=================================== Discovery By: CrAzY CrAcKeR Site: www.alshmokh.com I want to thank my friend:- nono225-mHOn-rageh-LoverHacker-BoNym Breeeeh-Rootshil-LiNuXrOOt-SauDiVirUS =================================== Example:- /messages.php?id=SQL =================================== Emai...

0.8AI score
Exploits0
Prion
Prion
added 2006/05/10 2:22 a.m.18 views

Information disclosure

The web management interface in 3Com TippingPoint SMS Server before 2.2.1.4478 does not restrict access to certain directories, which might allow remote attackers to obtain potentially sensitive information such as configuration settings...

5CVSS6.7AI score0.02725EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2006/05/10 2:22 a.m.21 views

CVE-2006-0993

The web management interface in 3Com TippingPoint SMS Server before 2.2.1.4478 does not restrict access to certain directories, which might allow remote attackers to obtain potentially sensitive information such as configuration settings...

5CVSS6.2AI score0.02725EPSS
Exploits0References10
Cvelist
Cvelist
added 2006/05/10 1:0 a.m.27 views

CVE-2006-0993

The web management interface in 3Com TippingPoint SMS Server before 2.2.1.4478 does not restrict access to certain directories, which might allow remote attackers to obtain potentially sensitive information such as configuration settings...

6.2AI score0.02725EPSS
Exploits0References10
CVE
CVE
added 2006/05/10 1:0 a.m.74 views

CVE-2006-0993

The CVE affects 3Com TippingPoint SMS Server’s web management interface prior to version 2.2.1.4478, where access to certain directories is not restricted. This could allow remote attackers to view benign data such as the user manual and, in the context of backups, potentially reveal configuratio...

5CVSS6.2AI score0.02725EPSS
Exploits0References10Affected Software1
securityvulns
securityvulns
added 2006/05/10 12:0 a.m.61 views

ZDI-06-013: 3Com TippingPoint SMS Server Information Disclosure Vulnerability

ZDI-06-013: 3Com TippingPoint SMS Server Information Disclosure Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-013.html May 9, 2006 -- CVE ID: CVE-2006-0993 -- Affected Vendor: 3Com TippingPoint -- Affected Products: TippingPoint SMS Server -- Vulnerability Details: This...

5CVSS0.1AI score0.02725EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2006/05/09 12:0 a.m.28 views

TippingPoint SMS Server Authentication Bypass Vulnerability

This vulnerability may allow attackers to access sensitive information from vulnerable TippingPoint SMS servers. The specific flaw exists within the web management interface. Due to insufficient protections on specific directories, an attacker with access to the web interface may be able to view...

5CVSS4AI score0.02725EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2006/05/03 4:19 p.m.4 views

security flaw

Multiple unspecified vulnerabilities in Ethereal 0.9.x up to 0.10.14 allow remote attackers to cause a denial of service crash from null dereference via 1 an invalid display filter, or the 2 GSM SMS, 3 ASN.1-based, 4 DCERPC NT, 5 PER, 6 RPC, 7 DCERPC, and 8 ASN.1 dissectors...

5CVSS5.8AI score0.02636EPSS
Exploits0References4
securityvulns
securityvulns
added 2006/04/30 12:0 a.m.30 views

NewsPHP <= All (news.php?include) Multiple Remote File Inclusion Vulnerabilities.

NewsPHP = All news.php?include Multiple Remote File Inclusion Vulnerabilities. Credit : WiLdBoY Exp Link : http://root-security.t35.com/Exploit.pl Thanx Security.nnuv.ru ; -- Check out the latest SMS services @ http://www.linuxmail.org This allows you to send and receive SMS through your mailbox...

1AI score
Exploits0
securityvulns
securityvulns
added 2006/04/29 12:0 a.m.34 views

PHPNuke 7.* Version Downloads Module SQL Injection Exp.

PHPNuke 7. Version Downloads Module SQL Injection Exp. Credit : WiLdBoY Exp. Link : http://root-security.t35.com/PHPNuke-Downloads.pl -- Check out the latest SMS services @ http://www.linuxmail.org This allows you to send and receive SMS through your mailbox. Powered by Outblaze...

2.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/04/26 12:0 a.m.21 views

Fedora Core 5 : ethereal-0.99.0-fc5.1 (2006-456)

Many security vulnerabilities have been fixed since the previous release. - The H.248 dissector could crash. Versions affected: 0.10.14. CVE: CVE-2006-1937 - The UMA dissector could go into an infinite loop. Versions affected: 0.10.12 - 0.10.14. CVE: CVE-2006-1933 - The X.509if dissector could...

10CVSS7.6AI score0.05028EPSS
Exploits0References10
Prion
Prion
added 2006/04/25 12:50 p.m.10 views

Design/Logic Flaw

Multiple unspecified vulnerabilities in Ethereal 0.9.x up to 0.10.14 allow remote attackers to cause a denial of service crash from null dereference via 1 an invalid display filter, or the 2 GSM SMS, 3 ASN.1-based, 4 DCERPC NT, 5 PER, 6 RPC, 7 DCERPC, and 8 ASN.1 dissectors...

5CVSS6.9AI score0.02636EPSS
Exploits0References31Affected Software1
UbuntuCve
UbuntuCve
added 2006/04/25 12:50 p.m.22 views

CVE-2006-1939

Multiple unspecified vulnerabilities in Ethereal 0.9.x up to 0.10.14 allow remote attackers to cause a denial of service crash from null dereference via 1 an invalid display filter, or the 2 GSM SMS, 3 ASN.1-based, 4 DCERPC NT, 5 PER, 6 RPC, 7 DCERPC, and 8 ASN.1 dissectors...

5CVSS5.9AI score0.02636EPSS
Exploits0References1
securityvulns
securityvulns
added 2006/04/25 12:0 a.m.84 views

Ethereal 0.99.0 Release Notes

Ethereal 0.99.0 Release Notes Table of Contents What is Ethereal? What's New Bug Fixes New and Updated Features New Protocol Support Updated Protocol Support New and Updated Capture File Support Getting Ethereal Microsoft Windows Sun Solaris Source Code Vendor-supplied Packages File Locations Kno...

10CVSS8.9AI score0.05028EPSS
Exploits0
Cvelist
Cvelist
added 2006/04/21 10:0 a.m.18 views

CVE-2006-1961

Cisco CiscoWorks Wireless LAN Solution Engine WLSE and WLSE Express before 2.13, Hosting Solution Engine HSE and User Registration Tool URT before 20060419, and all versions of Ethernet Subscriber Solution Engine ESSE and CiscoWorks2000 Service Management Solution SMS allow local users to gain...

6.8AI score0.02713EPSS
Exploits0References14
CVE
CVE
added 2006/02/02 11:0 a.m.53 views

CVE-2006-0522

CVE-2006-0522 describes a SQL injection in Symantec’s Sygate Management Server (SMS) Authentication Servlet. The vulnerability affects SMS version 4.1, build 1417 and earlier, and could let a remote attacker inject SQL via a URL to bypass authentication and potentially overwrite the password for ...

7.5CVSS8.5AI score0.0276EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2006/01/09 8:3 p.m.19 views

CVE-2006-0083

Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...

4.6CVSS6.2AI score0.00456EPSS
Exploits0References1
NVD
NVD
added 2006/01/09 8:3 p.m.25 views

CVE-2006-0083

Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...

4.6CVSS7AI score0.00456EPSS
Exploits0References6
Prion
Prion
added 2006/01/09 8:3 p.m.16 views

Format string

Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...

4.6CVSS7.4AI score0.00456EPSS
Exploits0References6
OSV
OSV
added 2006/01/09 8:3 p.m.9 views

CVE-2006-0083

Format string vulnerability in the logging code of SMS Server Tools smstools 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors...

7AI score
Exploits0References7
Rows per page
Query Builder