Lucene search
+L

3997 matches found

Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.16 views

Cisco IOS ACL Bypass (Bug ID CSCdi34061)

Binary data 2195.prm...

5CVSS7.3AI score0.01654EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.12 views

Cisco IOS ACL Bypass (Bug ID CSCdi36962)

Binary data 2200.prm...

7.5CVSS7.3AI score0.01667EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.12 views

Cisco VPN Concentrator ACL Bypass / DoS (Bug ID CSCdx07754, CSCdx24622, CSCdx24632)

Binary data 2231.prm...

7.5CVSS7.3AI score0.01657EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.15 views

Cisco IOS ACL Bypass (Bug ID CSCdi34061)

Binary data 2196.prm...

5CVSS7.3AI score0.01654EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.9 views

Cisco IOS ACL Bypass (Bug ID CSCdi34061)

Binary data 2197.prm...

5CVSS7.3AI score0.01654EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.18 views

Cisco VPN Concentrator ACL Bypass / DoS (Bug ID CSCdx07754, CSCdx24622, CSCdx24632)

Binary data 2232.prm...

7.5CVSS7.3AI score0.01657EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.15 views

Cisco IOS ACL Bypass (Bug ID CSCdi36962)

Binary data 2199.prm...

7.5CVSS7.3AI score0.01667EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.21 views

GLSA-200407-09 : MoinMoin: Group ACL bypass

The remote host is affected by the vulnerability described in GLSA-200407-09 MoinMoin: Group ACL bypass MoinMoin contains a bug in the code handling administrative group ACLs. A user created with the same name as an administrative group gains the privileges of the administrative group. Impact : I...

7.5CVSS5.7AI score0.01752EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.26 views

GLSA-200408-25 : MoinMoin: Group ACL bypass

The remote host is affected by the vulnerability described in GLSA-200408-25 MoinMoin: Group ACL bypass MoinMoin contains two unspecified bugs, one allowing anonymous users elevated access when not using ACLs, and the other in the ACL handling in the PageEditor. Impact : Restrictions on anonymous...

10CVSS5.6AI score0.02264EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2004/08/27 12:0 a.m.18 views

FreeBSD : moinmoin -- ACL group bypass (115)

The following package needs to be updated: moinmoin %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg1ecf4ca1f7ad11d896c900061bc2ad93.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

0.1AI score0.02264EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.21 views

OpenSSH < 2.9.9 Multiple Key Type ACL Bypass

Binary data 1988.prm...

7.5CVSS7.3AI score0.02949EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.14 views

Squid < 2.5.STABLE5 %xx URL Encoding ACL Bypass

Binary data 1212.prm...

7.5CVSS7.3AI score0.13809EPSS
Exploits1References3
NVD
NVD
added 2004/08/18 4:0 a.m.24 views

CVE-2004-0432

ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions...

7.5CVSS6.5AI score0.09197EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.29 views

Mandrake Linux Security Advisory : proftpd (MDKSA-2004:041)

A portability workaround that was applied in version 1.2.9 of the ProFTPD FTP server caused CIDR based ACL entries in 'Allow' and 'Deny' directives to act like an 'AllowAll' directive. This granted FTP clients access to files and directories that the server configuration may have been explicitly...

7.5CVSS5.3AI score0.09197EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.43 views

SUSE-SA:2002:036: mod_php4

The remote host is missing the patch for the advisory SUSE-SA:2002:036 modphp4. PHP is a well known and widely used web programming language. If a PHP script runs in 'safe mode' several restrictions are applied to it including limits on execution of external programs. An attacker can pass shell...

7.5CVSS6.2AI score0.02951EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2004/07/21 12:0 a.m.9 views

moinmoin -- ACL group bypass

The moinmoin package contains two bugs with ACLs and anonymous users. Both bugs may permit anonymous users to gain access to administrative functions; for example the delete function. There is no known workaround, the vulnerability exists regardless if a site is using ACLs or not...

6.5AI score
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2004/07/11 12:0 a.m.65 views

MoinMoin: Group ACL bypass

Background MoinMoin is a Python clone of WikiWiki, based on PikiPiki. Description MoinMoin contains a bug in the code handling administrative group ACLs. A user created with the same name as an administrative group gains the privileges of the administrative group. Impact If an administrative grou...

7.5CVSS6.6AI score0.01752EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.19 views

FreeBSD : squid ACL bypass due to URL decoding bug (182)

The following package needs to be updated: squid %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg705e003a7f3611d896450020ed76ef5a.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-20...

6.4AI score0.13809EPSS
Exploits1References15
Debian
Debian
added 2004/04/04 6:9 a.m.47 views

[SECURITY] [DSA 474-1] New squid packages fix ACL bypass

-------------------------------------------------------------------------- Debian Security Advisory DSA 474-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 3rd, 2004 http://www.debian.org/security/faq -...

7.5CVSS6.7AI score0.13809EPSS
Exploits1
securityvulns
securityvulns
added 2004/04/01 12:0 a.m.34 views

squid URL ACL protection bypass

By escaping URL characters it's possible to bypass URL filtering...

3.1AI score
Exploits0References1Affected Software1
Rows per page
Query Builder