Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-1004

Malware in sbrugna...

4.6CVSS6.4AI score0.00327EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.5 views

SUSE CVE-2004-0041

The modauthshadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions...

7.5CVSS6.7AI score0.01585EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/03/09 12:0 a.m.5 views

Maddy Mail Server 安全漏洞

Maddy Mail Server is a composable all-in-one mail server from the Russian individual developer Max Mazurov. A security vulnerability exists in maddy Mail Server versions prior to 0.5.4, which stems from not implementing password expiration or account expiration checks when using PAM for...

8.8CVSS7.8AI score0.00403EPSS
Exploits0References3
NVD
NVD
added 2021/02/09 10:15 p.m.24 views

CVE-2021-21502

Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. A user on the network with the ISIPRIVAUTHSSH RBAC privilege that has an expired account may potentially exploit this vulnerability, giving them access to the same things they had before...

9.8CVSS0.01412EPSS
Exploits0References1
Prion
Prion
added 2021/02/09 10:15 p.m.20 views

Code injection

Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. A user on the network with the ISIPRIVAUTHSSH RBAC privilege that has an expired account may potentially exploit this vulnerability, giving them access to the same things they had before...

7.5CVSS9.1AI score0.01412EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/02/09 9:25 p.m.31 views

CVE-2021-21502

Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. A user on the network with the ISIPRIVAUTHSSH RBAC privilege that has an expired account may potentially exploit this vulnerability, giving them access to the same things they had before...

9.8CVSS9.3AI score0.01412EPSS
Exploits0References1
CVE
CVE
added 2021/02/09 9:25 p.m.61 views

CVE-2021-21502

Affected products: Dell PowerScale OneFS 8.1.0–9.1.0. Vulnerability: use of an SSH key past account expiration tied to the ISI_PRIV_AUTH_SSH RBAC privilege, enabling a user with an expired account to access the same content as before expiration. Impact (per sources): potential access with high im...

9.8CVSS9AI score0.01412EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2020/11/11 12:0 a.m.8 views

openGauss: Configuring the Validity Period of User Roles

When creating a role, you can use the keyword VALID BEGIN to set the start time of the role validity period and use VALID UNTIL to set the end time. If these two keywords are not set, roles are permanently valid. The role expiration time on each node in openGauss depends on the OS clock on each...

7.1AI score
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

IceWarp Merak Mail Server 9.4.1 'Forgot Password' Input Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34827/info IceWarp Merak Mail Server is prone to an input-validation vulnerability because it uses client-supplied data when performing a 'Forgot Password' function. Attackers can exploit this issue via social-engineering...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/07/06 12:0 a.m.31 views

Bs Scripts_Directory SQL Injection

1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs ScriptsDirectory Sqli/Auth Bypass Vulnerability Date : july 5,2010 Critical Level : HIGH vendor URL :http://www.brotherscripts.com/ Price:$24.95 Author :...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/07/06 12:0 a.m.27 views

Bs General_Classifieds Script SQL Injection

1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs GeneralClassifieds Script Sqli Vulnerability Date : july 5,2010 Critical Level : HIGH vendor URL :http://www.brotherscripts.com/ Price:$24.95 Author :...

Exploits0
0day.today
0day.today
added 2010/07/05 12:0 a.m.29 views

Bs Auto_Classifieds Script (search) Sql injection Vulnerability

Exploit for php platform in category web applications =============================================================== Bs AutoClassifieds Script search Sql injection Vulnerability ===============================================================...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.17 views

Debian Security Advisory DSA 421-1 (mod-auth-shadow)

The remote host is missing an update to mod-auth-shadow announced via advisory DSA 421-1. OpenVAS Vulnerability Test $Id: deb4211.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 421-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS0.5AI score0.01585EPSS
Exploits0
securityvulns
securityvulns
added 2006/05/02 12:0 a.m.66 views

Unauthorized Cisco Unity Express access

It's possible to change password without entering old one if account is expired...

2.5AI score
Exploits0References1Affected Software1
NVD
NVD
added 2004/02/03 5:0 a.m.13 views

CVE-2004-0041

The modauthshadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions...

7.5CVSS6.2AI score0.01585EPSS
Exploits0References5
Cvelist
Cvelist
added 2004/01/14 5:0 a.m.26 views

CVE-2004-0041

The modauthshadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions...

6.1AI score0.01585EPSS
Exploits0References5
CVE
CVE
added 2001/09/12 4:0 a.m.50 views

CVE-1999-1023

The CVE-1999-1023 entry concerns Solaris 7.0, where the useradd utility does not correctly interpret certain date formats provided to the -e expiration date argument. This incorrect parsing could allow users to log in after their accounts are supposed to expire, per the documented description. No...

4.6CVSS6.9AI score0.00327EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.26 views

CVE-1999-1023

useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" expiration date argument, which could allow users to login after their accounts have expired...

6.5AI score0.00327EPSS
Exploits0References2
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.52 views

sshd-1.x-2.x-login.txt

Date: Sat, 23 Jan 1999 17:06:44 -0500 From: KuRuPTioN To: [email protected] Subject: SSH 1.x and 2.x Daemon There seems to be incomplete code in the SSH daemon in both versions 1.2.27 and 2.0.11 only tested. The bug simply allows users who with expired accounts in /etc/shadow to continue to...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.34 views

windows.time-date.bug.txt

Date: Tue, 23 Mar 1999 15:20:55 -0500 From: Brett Robins To: [email protected] Subject: Time/Date bug in Windows' OSes Although not a security bug, this certainly is a potentially large bug in my eyes. You can accidentally change the systems date/time by using the calendar function...

7.4AI score
Exploits0
Rows per page
Query Builder