Lucene search
+L

446 matches found

CERT
CERT
added 2008/10/02 12:0 a.m.36 views

IPv6 implementations insecurely update Forwarding Information Base

Overview A vulnerability in some implementations of the IPv6 Neighbor Discovery Protocol may allow a nearby attacker to intercept traffic or cause congested links to become overloaded. Description IPv6 networks use the Neighbor Discovery Protocol NDP to detect and locate routers and other on-link...

6.4AI score
Exploits0References11
Prion
Prion
added 2008/03/20 12:44 a.m.17 views

Code injection

Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service site-to-site VPN tunnel outage, and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel's...

6.5CVSS6.8AI score0.02165EPSS
Exploits1References9Affected Software5
CERT
CERT
added 2008/01/25 12:0 a.m.33 views

GE Fanuc Proficy Information Portal transmits authentication credentials in plain text

Overview GE Fanuc Proficy Information Portal can transmit authentication credentials in plain text. An attacker could monitor traffic, obtain valid credentials, and gain access to the portal. Description GE Fanuc Proficy Information Portal is a web-based systems reporting tool often used to...

9.8CVSS9.6AI score0.01957EPSS
Exploits0References11
CVE
CVE
added 2007/03/26 11:0 p.m.55 views

CVE-2007-1692

CVE-2007-1692 concerns WPAD abuse via name registrations in Windows WINS/DNS. The default Windows config may allow remote attackers to intercept user web traffic by registering a proxy using WINS/DNS and answering WPAD requests (as shown with Internet Explorer). Related entries (CVE-2009-0093/009...

7.5CVSS6.4AI score0.15254EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2007/03/26 11:0 p.m.35 views

CVE-2007-1692

The default configuration of Microsoft Windows uses the Web Proxy Autodiscovery Protocol WPAD without static WPAD entries, which might allow remote attackers to intercept web traffic by registering a proxy server using WINS or DNS, then responding to WPAD requests, as demonstrated using Internet...

6.3AI score0.15254EPSS
Exploits0References6
securityvulns
securityvulns
added 2001/02/16 12:0 a.m.26 views

Проблемы с авторизацией в Novell Directory

Уязвиомсть протокола авторизации позволяет скомпрометировать клиента при возможности перехвата траффика man-in-the-middle...

0.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder