5452 matches found
Design/Logic Flaw
The Cisco Content Services Switch CSS 11500 with software 8.20.4.02 and the Application Control Engine ACE 4710 with software A23.0 do not properly handle LF header terminators in situations where the GET line is terminated by CRLF, which allows remote attackers to conduct HTTP request smuggling...
CVE-2010-1576
The Cisco Content Services Switch CSS 11500 with software before 8.20.4.02 and the Application Control Engine ACE 4710 with software before A23.0 do not properly handle use of LF, CR, and LFCR as alternatives to the standard CRLF sequence between HTTP headers, which allows remote attackers to...
CVE-2010-2629
The Cisco Content Services Switch CSS 11500 with software 8.20.4.02 and the Application Control Engine ACE 4710 with software A23.0 do not properly handle LF header terminators in situations where the GET line is terminated by CRLF, which allows remote attackers to conduct HTTP request smuggling...
CVE-2010-1576
Mode C Vulnerability: CVE-2010-1576 affects Cisco CSS 11500 (pre-8.20.4.02) and Cisco ACE 4710 (pre-A2(3.0)); the issue is improper handling of HTTP header end-of-line sequences (LF, CR, LFCR vs CRLF), enabling header insertion bypass and HTTP request smuggling via crafted headers (e.g., ClientCe...
CVE-2010-1575
CVE-2010-1575 affects Cisco CSS 11500 (software 08.20.1.01) and Cisco ACE; root cause is weak enforcement of HTTP ClientCert-* headers during SSL termination, leaving room for an attacker to spoof client certificates and impersonate other users. Impact, as described, is potential authentication b...
Debian DSA-1906-1 : clamav - End-of-life announcement for clamav in stable and oldstable
Security support for clamav, an anti-virus utility for Unix, has been discontinued for the stable distribution lenny and the oldstable distribution etch. Clamav Upstream has stopped supporting the releases in etch and lenny. Also, it is not easily possible to receive signature updates for the vir...
OS Identification : SNMP sysObjectID
The remote operating system can be identified by querying its sysObjectID object using SNMP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid44344; scriptversion"1.28"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/04/09"; scriptnameenglish:"OS...
Switch Sound File Converter Denial Of Service
Exploit Title: Switch Sound File Converter .mpga BOF DOS Date: 2009-1-1 Author: Jacky Version: 0.0.0.0 Tested on: Windows XP SP2 Switch Sound File Converter .mpga BOF POS Vulnerability Discovered and written by : Jacky Greetz to Corelan team and Peter Van Eeckhoutte !!! When you create a file tha...
Switch Sound File Converter .mpga BOF DOS
Exploit for unknown platform in category dos / poc ========================================= Switch Sound File Converter .mpga BOF DOS ========================================= Title: Switch Sound File Converter .mpga BOF DOS CVE-ID: OSVDB-ID: Author: Jacky Published: 2010-01-01 Verified: yes vie...
Switch Sound File Converter - .mpga Buffer Overflow (Denial of Service) (PoC)
Switch Sound File Converter - .mpga Buffer Overflow Denial of Service PoC Exploit Title: Switch Sound File Converter .mpga BOF DOS Date: 2009-1-1 Author: Jacky Version: 0.0.0.0 Tested on: Windows XP SP2 Switch Sound File Converter .mpga BOF POS Vulnerability Discovered and written by : Jacky Gree...
Switch Sound File Converter - '.mpga' Buffer Overflow (Denial of Service) (PoC)
Exploit Title: Switch Sound File Converter .mpga BOF DOS Date: 2009-1-1 Author: Jacky Version: 0.0.0.0 Tested on: Windows XP SP2 Switch Sound File Converter .mpga BOF POS Vulnerability Discovered and written by : Jacky Greetz to Corelan team and Peter Van Eeckhoutte !!! When you create a file tha...
kernel: x86_64 32 bit process register leak
arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x8664 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode...
PT-2009-1058 · Moxa +4 · Moxa Pt-7728 +7
Name of the Vulnerable Software and Affected Versions: Moxa PT-508, PT-7728, PT-7828, MDS-G4012 affected versions not specified ntp versions prior to 4.2.4p8 ntp version 4.2.0.a.20040617 ntp version 4.1.2 Description: The issue is related to uncontrolled recursion in the Ethernet switch microcode...
Cisco switch password-cracking-vulnerability warning-the black bar safety net
Use the console cable is connected toswitch, through HyperTerminal or Secure CRT connection to switch; 2. Press and hold down the switch on the front panel MODE button, plug in the switch power supply; 3. About 4 0 seconds after the release of the Mod 1. Use the console cable is connected...
[security bulletin] HPSBMI02473 SSRT080138 rev.1 - Cisco Catalyst Blade Switch 3020/3120, Remote Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01923093 Version: 1 HPSBMI02473 SSRT080138 rev.1 - Cisco Catalyst Blade Switch 3020/3120, Remote Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted upon as so...
Alteon OS BBI (Nortell) - Multiple Vulnerabilities XSS XSRF
Exploit for unknown platform in category web applications ============================================================= Alteon OS BBI Nortell - Multiple Vulnerabilities XSS / XSRF ============================================================= Exploit Title: Alteon OS BBI Nortell - Multiple...
Alteon OS BBI (Nortell) - Cross-Site Scripting Cross-Site Request Forgery
Alteon OS BBI Nortell - Cross-Site Scripting Cross-Site Request Forgery Exploit Title: Alteon OS BBI Nortell - Multiple Vulnerabilities Date: 16 Nov 09 Author: Sintsov Alexey Software Link: downoad link if available Version: Date: Mon, 16 Nov 2009 14:01:04 +0300 Digital Security Research Group...
Solaris Update for Native LDAP, PAM, name-service-switch 138874-05
Check for the Version of Native LDAP, PAM, name-service-switch OpenVAS Vulnerability Test Solaris Update for Native LDAP, PAM, name-service-switch 138874-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software;...
Solaris Update for Native LDAP, PAM, name-service-switch 138875-05
Check for the Version of Native LDAP, PAM, name-service-switch OpenVAS Vulnerability Test Solaris Update for Native LDAP, PAM, name-service-switch 138875-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software;...
Solaris Update for Native LDAP, PAM, name-service-switch 138875-05
Check for the Version of Native LDAP, PAM, name-service-switch OpenVAS Vulnerability Test Solaris Update for Native LDAP, PAM, name-service-switch 138875-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software;...