Lucene search
K

5685 matches found

securityvulns
securityvulns
added 2001/08/17 12:0 a.m.94 views

Уязвимости Arkeia Backup (weak encryption)

Весь протокол обмена трафиком между клиентом и сервером не зашифрован. Используются стандартные DES-пароли...

2AI score
Exploits0References1
securityvulns
securityvulns
added 2001/08/17 12:0 a.m.34 views

Arkeia Possible remote root & information leakage

Arkeia 4.2 - other versions not tested Possible remote root & information leakage Sumary Arkeia www.arkeia.com is from their webpage: "Arkeia simplifies data protection by providing automated backup and recovery.The system supports a wide variety of computers, operating systems and storage device...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2001/05/23 12:0 a.m.24 views

LinkMax.txt

---------------------------------------------------------- Release date: May 21th 2001 Subject: WebAvail LinkMax2 ASP security problem Systems affected: All systems running LinkMax2 ASP script Vendor: http://www.webavail.com ---------------------------------------------------------- 1. problem...

7.4AI score
Exploits0
CVE
CVE
added 2001/04/04 4:0 a.m.40 views

CVE-2001-0273

CVE-2001-0273 affects pgp4pine 1.75-6. The module fails to verify whether public keys loaded from GnuPG are expired, which can lead to encrypt attempts returning errors while the cleartext message is transmitted. According to CERT/CC and NVD entries, the vulnerability can cause sensitive informat...

2.6CVSS6.5AI score0.01537EPSS
Exploits1References4Affected Software1
Exploit DB
Exploit DB
added 2000/10/02 12:0 a.m.101 views

SmartWin CyberOffice Shopping Cart 2.0 - Client Information Disclosure

source: https://www.securityfocus.com/bid/1734/info Smartwin Technology CyberOffice Shopping Cart is a shopping cart application for e-commerce enabled websites running Windows NT 4.0 or 2000. It is possible for a remote user to gain read access to the private directory on a website running...

7AI score
Exploits0
exploitpack
exploitpack
added 2000/10/02 12:0 a.m.21 views

SmartWin CyberOffice Shopping Cart 2.0 - Client Information Disclosure

SmartWin CyberOffice Shopping Cart 2.0 - Client Information Disclosure source: https://www.securityfocus.com/bid/1734/info Smartwin Technology CyberOffice Shopping Cart is a shopping cart application for e-commerce enabled websites running Windows NT 4.0 or 2000. It is possible for a remote user ...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2000/07/12 4:0 a.m.31 views

CVE-2000-0350

A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unencrypted events...

6.8AI score0.0787EPSS
Exploits1References4
Exploit DB
Exploit DB
added 2000/05/25 12:0 a.m.37 views

Omnis Studio 2.4 - Weak Database Field Encryption

source: https://www.securityfocus.com/bid/1255/info Omnis Studio 2.4 is a development tool for creating database applications. The tool gives developers the option to encrypt database entries. However, the encryption scheme used is weak and easily broken with any scientific calculator or even pen...

7.4AI score
Exploits0
NVD
NVD
added 2000/05/17 4:0 a.m.26 views

CVE-2000-0350

A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unencrypted events...

5CVSS6.8AI score0.0787EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2000/05/12 12:0 a.m.1658 views

X Server Detection

The remote host is running an X11 server. X11 is a client-server protocol that can be used to display graphical applications running on a given host on a remote client. Since the X11 traffic is not ciphered, it is possible for an attacker to eavesdrop on the connection. C Tenable Network Security...

5.6AI score
Exploits0
Cvelist
Cvelist
added 2000/04/26 4:0 a.m.24 views

CVE-2000-0271

read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypted passwords...

6.4AI score0.00336EPSS
Exploits0References2
CVE
CVE
added 2000/04/26 4:0 a.m.53 views

CVE-2000-0271

In CVE-2000-0271, Emacs 20’s read-passwd and related Lisp functions do not properly clear the history of recently typed keys. This can allow an attacker to read unencrypted passwords stored in the command history. The issue is rooted in the Lisp password/history handling within Emacs 20. The prov...

4.6CVSS6.8AI score0.00336EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2000/04/08 12:0 a.m.26 views

vqserver /........../

Version tested: vqserver 1.9.9 for windows The webserver vqserver follows /........../ in requests. http://host/........../autoexec.bat gives the autoexec.bat file. More serious, http://host/........../some/path/vq/server/cfg/server.cfg where /some/path/ could be anything, but normally...

1.1AI score
Exploits0
securityvulns
securityvulns
added 2000/04/07 12:0 a.m.147 views

PcAnywhere weak password encryption

PcAnywhere weak password encryption ---- Discussion ---- PcAnywhere 9.0.0 set to its default security value uses a trivial encryption method so user names and password are not sent directly in clear. Since most users have the encryption methods set to either "none" or "PcAnyWhere", their password...

7.4AI score
Exploits0
CVE
CVE
added 2000/03/22 5:0 a.m.50 views

CVE-1999-0727

CVE-1999-0727 affects the OpenBSD kernel, where a kernel leak could allow IPsec packets to be sent unencrypted. Documents confirm the root cause is a kernel leak in the OpenBSD kernel, with impact described as partial confidentiality (IPsec traffic could be exposed). The available sources do not ...

5CVSS6.7AI score0.01002EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2000/02/04 5:0 a.m.44 views

CVE-1999-0361

CVE-1999-0361 affects NetWare deployments running LaserFiche (Novell NetWare version of LaserFiche). The vulnerable component is the storage of usernames and passwords in unencrypted form, and the vulnerability allows administrative changes to occur without logging. Public documentation consisten...

10CVSS7.1AI score0.01603EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 1999/10/12 12:0 a.m.24 views

CVS pserver Detection

Concurrent Versions System CVS, an open source versioning system, is running on the remote port. The CVS server can be accessed either using third-party tools e.g., RSH or SSH or via the 'pserver' protocol, which is unencrypted. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

5.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/08/30 12:0 a.m.26 views

NIS Server Detection

The remote host is an NIS Network Information Service server. NIS is used to share usernames, passwords, and other sensitive information among the hosts claiming to be within a given NIS domain and passes this information over the network unencrypted. C Tenable Network Security, Inc...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/08/22 12:0 a.m.230 views

Telnet Service Detection

The Telnet service is running. This service is dangerous in the sense that it is not ciphered - that is, everyone can sniff the data that passes between the telnet client and the telnet server. This includes logins and passwords. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...

5.4AI score
Exploits0
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.41 views

compulink-laserfiche-passwd.txt

Date: Thu, 28 Jan 1999 10:21:55 -0800 From: Darren Rogers To: [email protected] Subject: Compulink LaserFiche Client/Server - unencrypted passwords Background: LaserFiche is a popular client-server imaging system, which according to their website, 'is the trusted imaging system used by Fortune...

7.4AI score
Exploits0
Rows per page
Query Builder