111 matches found
Siemens SIMATIC HMI Panels < 15.4 Integrated Webserver HTTP Header Injection
Binary data 720167.prm...
mod_auth_mellon: authentication bypass in ECP flow
A vulnerability was found in modauthmellon. If Apache is configured as a reverse proxy and modauthmellon is configured to only let through authenticated users with the require valid-user directive, adding special HTTP headers that are normally used to start the special SAML ECP non-browser based...
Mitel ST Information Disclosure Vulnerability
Mitel ST is a video conferencing product from Mitel Canada. A security vulnerability exists in Mitel ST 14.2 GA28 and prior versions. An attacker can exploit the vulnerability to determine a valid user ID and associated user name...
CVE-2011-4973
Authentication bypass vulnerability in modnss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password...
Authentication flaw
Authentication bypass vulnerability in modnss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password...
CVE-2011-4973
Authentication bypass vulnerability in modnss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password...
CVE-2011-4973
Removed by vendor...
CVE-2018-0088
A vulnerability in one of the diagnostic test CLI commands on Cisco Industrial Ethernet 4010 Series Switches running Cisco IOS Software could allow an authenticated, local attacker to impact the stability of the device. This could result in arbitrary code execution or a denial of service DoS...
CVE-2017-12283
A vulnerability in the handling of 802.11w Protected Management Frames PAF by Cisco Aironet 3800 Series Access Points could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device, aka Denial of Service. The vulnerability exists because the affected...
CVE-2015-7259
ZTE ADSL ZXV10 W300 modems W300V2.1.0fER7PEO57 and W300V2.1.0hER7PEO57 allow user accounts to have multiple valid username and password pairs, which allows remote authenticated users to login to a target account via any of its username and password pairs...
tomcat: timing attack in Realm implementation
The Realm implementations did not process the supplied password if the supplied user name did not exist. This made a timing attack possible to determine valid user names. Note that the default configuration includes the LockOutRealm which makes exploitation of this vulnerability harder...
ownCloud server user enumeration vulnerability
ownCloud is a free and open source personal cloud storage solution that offers file management, music storage, calendars and more. A user enumeration vulnerability exists in the ownCloud server, which allows remote attackers to submit a special request to obtain a valid user name...
User Enumeration Vulnerability in Journalx 2.0, a Remote Processing System for Journal Manuscripts
Journalx 2.0 is a remote processing platform for journal manuscripts developed independently by Beijing Magtech. A user enumeration vulnerability exists in Journalx 2.0. An attacker can exploit the vulnerability to obtain valid user accounts, resulting in an exhaustive attack...
Puppet Enterprise User Enumeration Vulnerability
Puppet is a set of configuration management tools based on client/server C/S architecture from Puppet Labs in the U.S. It can be used to manage configuration files, users, cron tasks, packages, system services, etc. Puppet Enterprise is an enterprise version. A user enumeration vulnerability exis...
Cloudera Manager User Enumeration Vulnerability
Cloudera Manager is a set of Hadoop data management software from Cloudera, USA. The software supports the creation of clusters, authentication, data backup and recovery and so on. A user enumeration vulnerability exists in Cloudera Manager. An attacker can exploit the vulnerability to obtain val...
roundcubemail: remote code execution
High-Tech Bridge Security Research Lab discovered a path traversal vulnerability in Roundcube. Vulnerability can be exploited to gain access to sensitive information and under certain circumstances to execute arbitrary code and totally compromise the vulnerable server. The vulnerability exists du...
CVE-2013-3977
The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 allows remote attackers to determine which meeting rooms are owned by a user by leveraging knowledge of valid user names...
SAP NetWeaver SOAP RFC SXPG_COMMAND_EXECUTE Command Execution
Added: 07/03/2013 BID: 55084 OSVDB: 93536 Background SAP NetWeaver is a technology platform for building and integrating SAP business applications. Remote Function Call RFC is the standard SAP interface for communication between SAP systems. Transaction SM69 is used to create and maintain externa...
Microsoft IIS FTP Server NLST Command Remote Overflow
Added: 09/03/2009 CVE: CVE-2009-3023 BID: 36189 OSVDB: 57589 Background Microsoft Internet Information Server IIS includes a web server and an FTP server. Problem A stack overflow in the FTP server in IIS 5 and 6.0 via a crafted NLST command that uses wildcards allows remote authenticated users t...
Microsoft IIS FTP Server NLST Command Remote Overflow
Added: 09/03/2009 CVE: CVE-2009-3023 BID: 36189 OSVDB: 57589 Background Microsoft Internet Information Server IIS includes a web server and an FTP server. Problem A stack overflow in the FTP server in IIS 5 and 6.0 via a crafted NLST command that uses wildcards allows remote authenticated users t...