PostACI Webmail Vulnerability

The PostACI webmail system contains a rather trival vulnerability. One can obtain the hostname, username and password variables for the MySQL server in addition to other setup information if PostACI is setup as described running out of the box by simplying going to the url:...

vlan_security.txt

Subject: Re: VLAN Security To: [email protected] -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, You're right this is definitively a problem. However I don't think it is related to the 802.1Q specification. Any non-trunk port should discard 802.1Q frames because non-trunk ports are just...

vacm.ucd-snmp.txt

Date: Tue, 6 Apr 1999 03:09:55 -0800 From: + + To: [email protected] Subject: ucd snmp vacm's public community access auth probs? I have found a feature in the vacm ucd-snmp v3.52 and v3.6, when setting up snmp services under Linux RH 5.2. By default, v3.5.2 always delivers the system mib...

Computalynx CMail 2.3 - Web File Access

Computalynx CMail 2.3 - Web File Access / source: https://www.securityfocus.com/bid/281/info A vulnerability in Computalynx's CMail allows remote malicious users to steal local files. Compulynx's CMail is a Win32 mail server program. One of its features is allowing users to access their email wit...

Novell Netware 4.14.11 - SP5B NDS Default Rights

Novell Netware 4.14.11 - SP5B NDS Default Rights source: https://www.securityfocus.com/bid/484/info Non-authenticated clients have access to CX.EXE and NLIST.EXE in the SYS:LOGIN directory of a Netware 4.x server. The default root access is set to Read. Therefore, by using various switch options ...

Novell Netware 4.1/4.11 - SP5B NDS Default Rights

source: https://www.securityfocus.com/bid/484/info Non-authenticated clients have access to CX.EXE and NLIST.EXE in the SYS:LOGIN directory of a Netware 4.x server. The default root access is set to Read. Therefore, by using various switch options in CX.EXE and NLIST.EXE, anyone connecting to the...