1654 matches found
Ipswitch IMail Server 7/8 - Weak Password Encryption
// source: https://www.securityfocus.com/bid/10956/info Ipswitch IMail is reported to use a weak encryption algorithm when obfuscating saved passwords. A local attacker who has the ability to read the encrypted passwords may easily derive the plaintext password if the username that is associated...
CVE-1999-0829
HP Secure Web Console uses weak encryption...
PT-1999-1383 · Hewlett Packard · Hp Secure Web Console
Name of the Vulnerable Software and Affected Versions: HP Secure Web Console affected versions not specified Description: The issue is related to the use of weak encryption in HP Secure Web Console. Recommendations: At the moment, there is no information about a newer version that contains a fix...
msn.messanger.weak.crypto.txt
From: Luciano Martins Sent: Wednesday, October 27, 1999 2:36 PM Subject: MSN Messenger Service 1.0 Problem: The encryption algorithm used is weak and easily broken. MSN Messenger Service 1.0 Problem: The encryption algorithm used is weak and easily broken. MSN Messenger Service allows users to sa...
CVE-1999-0884
The Zeus web server administrative interface uses weak encryption for its passwords...
CVE-1999-0944
IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections...
PT-1999-1482 · Ibm · Ibm Websphere
Name of the Vulnerable Software and Affected Versions: IBM WebSphere affected versions not specified Description: The issue concerns the use of weak encryption by the IBM WebSphere ikeyman tool to store a password for a key database used in SSL connections. Recommendations: At the moment, there i...
IBM Websphere 2.0/3.0 - ikeyman Weak Encrypted Password
source: https://www.securityfocus.com/bid/1763/info IBM WebSphere ships with a tool called 'ikeyman' that encrypts server certificates/key pairs when the IBM HTTP Server and SSL connections are enabled. Ikeyman stores the password in a stash file which can be easily decrypted through the use of a...
CVE-1999-1540
shell-lock in Cactus Software Shell Lock uses weak encryption trivial encoding which allows attackers to easily decrypt and obtain the source code...
pegasus.mail.passwd.txt
Date: Sat, 15 May 1999 12:42:12 +0000 From: galldor To: [email protected] Subject: Pegasus Mail weak encryption --------------------------------------------------------------------- Pegasus Mail Weak Encryption Versions Effected: ALL but I wrote about the V2 encryption on 3.0+ Bug Found by:...
slmail3.txt
Date: Fri, 4 Sep 1998 16:38:13 +0100 From: Mnemonix Subject: SL-Mail ver 3.0.2423 security Hi, I thought I'd write to advise of a security issue with SLMail version 3.0.3423. Other versions may also be affected. During the install you choose whether the passowrd is set to the account name,...
iomega-onestep-backup.txt
Date: Thu, 14 Jan 1999 09:39:05 -0800 From: aberrant To: [email protected] Subject: Shoddy encryption in Iomega One-Step Backup fwd I searched the archives and didn't find anything regarding this. The vendor was notified over a week ago and, aside from the standard "Thank you for your concern"...
imail.passwd.txt
Date: Thu, 4 Mar 1999 22:30:42 -0800 From: Steven Alexander To: [email protected] Subject: IMAIL password recovery is trivial. The user passwords for Ipswitch's IMail server are stored in encryptedsorta form in the Windows NT registry...
CVE-1999-1078
WSFTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote attackers to easily decrypt the passwords and gain privileges...
ELS Screen to Screen 1.0 - Multiple Password Vulnerabilities
source: https://www.securityfocus.com/bid/551/info Screen to Screen is a remote control utility for systems runnig MacOS. To use it, you need to have an administrator password. This password is stored in encrypted form in a file called "Authorization" located in the System Folder under...
Ogopogo Autothenticate 1.1.5 - Weak Password Encryption
Ogopogo Autothenticate 1.1.5 - Weak Password Encryption source: https://www.securityfocus.com/bid/552/info Autothenticate is an extension for MacOS that remembers usernames and passwords from visited websites, and atomatically enters them when the site is visited again. It can be configured to...
ELS Screen to Screen 1.0 - Multiple Password Vulnerabilities
ELS Screen to Screen 1.0 - Multiple Password Vulnerabilities source: https://www.securityfocus.com/bid/551/info Screen to Screen is a remote control utility for systems runnig MacOS. To use it, you need to have an administrator password. This password is stored in encrypted form in a file called...
Ogopogo Autothenticate 1.1.5 - Weak Password Encryption
source: https://www.securityfocus.com/bid/552/info Autothenticate is an extension for MacOS that remembers usernames and passwords from visited websites, and atomatically enters them when the site is visited again. It can be configured to store the username and password, the username only, or...
Quinn - 'the Eskimo' and Peter N. Lewis Internet Configuration 1.0/2.0 Weak Password Encryption
source: https://www.securityfocus.com/bid/546/info Internet Config is a third-party freeware utility for MacOS. It provides a means of centralizing frequently-required connection information, including passwords, for use by several programs. The passwords are stored in encrypted form in the...
CVE-1999-1543
MacOS uses weak encryption for passwords that are stored in the Users & Groups Data File...