2213 matches found
Built on the Windows XP Welcome screen hidden user-vulnerability warning-the black bar safety net
In the school Dorm, many people in the machine are set to the Windows XP login password, and in the boot after the Welcome screen is displayed. If we took them away secretly add a user, since you will in the Windows XP Welcome screen is displayed. This was so that we on the machine the master is...
[EXPL] Net Portal Dynamic System Denial of Service Exploit
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Dynamic-SQL version of the new hole directly to get the background-bug warning-the black bar safety net
Source of Information: Network First register a number, enter the control panel to give yourself a clockwork SMS http://127.0.0.1/User/UserMessage.asp?Action=Del&ManageType=Inbox&MessageID=4 This is the point The user name is admin and the strangecatchwell caughtdisplay the record does not existi...
[SA15857] Emilda User Management Security Bypass Vulnerability
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
[Full-disclosure] Advisory 03/2005: Cacti Multiple SQL Injection Vulnerabilities [FIXED]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hardened - PHP Project www.hardened-php.net -= Security Advisory =- Advisory: Cacti Multiple SQL Injection Vulnerabilities Release Date: 2005/07/01 Last Modified: 2005/07/01 Author: Stefan Esser [email protected] Application: Cacti = 0.8.6e...
Enhance Seraph SSO support to create users automatically
panel:bgColor=e7f4fa NOTE: This suggestion is for JIRA Server. Using JIRA Cloud? See the corresponding suggestion|http://jira.atlassian.com/browse/JRACLOUD-4299. panel Users of SSO systems generally also have some sort of external user management. As a simple first step, JIRA's SSO authenticator...
Linux User Account Activity Remove User from Group (via Splunk): audit (USER_MGMT)
Binary data 710014.prm...
Linux User Account Activity Create User (via Splunk): audit (USER_MGMT)
Binary data 710045.prm...
Multiple Vulnerabilities in Free Web Chat
Donato Ferrante Application: Free Web Chat http://sourceforge.net/projects/freewebchat/ Version: Initial Release Bugs: Multiple Vulnerabilities Date: 04-Aug-2004 Author: Donato Ferrante e-mail: [email protected] web: www.autistici.org/fdonato...
ArGoSoft 1.8.x - Authentication Bypass
ArGoSoft 1.8.x - Authentication Bypass source: https://www.securityfocus.com/bid/7608/info A vulnerability has been reported for ArGoSoft Mail Server FreeWare version. The problem occurs due to the FreeWare version of ArGoSoft failing to carry out sufficient authentication before granting access ...
ArGoSoft 1.8.x - Authentication Bypass
source: https://www.securityfocus.com/bid/7608/info A vulnerability has been reported for ArGoSoft Mail Server FreeWare version. The problem occurs due to the FreeWare version of ArGoSoft failing to carry out sufficient authentication before granting access to the user management interface. As a...
Have JIRA delete cookie when user authentication fails
I would like to suggest that if JIRA loads the user details id and password from a cookie and attempts to authenticate and fails then JIRA should delete the cookie. The logic behind this is: We are using LDAP for authentication to Novell's NDS and if a user gets JIRA to remember their id and...
FUDforum file access and SQL Injection
FUDforum file access and SQL Injection PROGRAM: FUDforum VENDOR: Advanced Internet Designs Inc. [email protected] HOMEPAGE: http://fud.prohost.org/ VULNERABLE VERSIONS: 2.0.2, possibly others IMMUNE VERSIONS: 2.2.0 and above LOGIN REQUIRED: no some issues, admin some issues SEVERITY: medium...
Microsoft Windows - Local Users Information : Never Changed Passwords
Using the supplied credentials, Nessus was able to list local users who have never changed their passwords. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10914; scriptversion"1.22"; scriptcvsdate"Date: 2019/07/08 10:52:29"; scriptnameenglish:"Microsoft Windows - Loc...
Microsoft Windows - Local Users Information : User Has Never Logged In
Using the supplied credentials, Nessus was able to list local users who have never logged into their accounts. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10915; scriptversion"1.19"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft Windows -...
Microsoft Windows - Local Users Information : Disabled Accounts
Using the supplied credentials, Nessus was able to list local user accounts that have been disabled. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10913; scriptversion"1.19"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft Windows - Local User...
Microsoft Windows - Local Users Information : Passwords Never Expire
Using the supplied credentials, Nessus was able to list local users that are enabled and whose passwords never expire. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10916; scriptversion"1.23"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft...
Microsoft Windows - Users Information : Never Changed Password
Using the supplied credentials, Nessus was able to list users who have never changed their passwords. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10898; scriptversion"1.23"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft Windows - Users...
Microsoft Windows 'Print Operators' Group User List
Using the supplied credentials, it is possible to extract the member list of the 'Print Operators' group. Members of this group can manage printers within a Windows Domain or shutdown a server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10905; scriptversion"1.20"...
Microsoft Windows - Users Information : Automatically Disabled Accounts
Using the supplied credentials, Nessus was able to list user accounts that have been automatically disabled. These accounts may have been disabled for security reasons or due to brute-force attack attempts. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10895;...