CVE-2006-4833

Verso NetPerformer FRAD ACT SDM-95xx 7.xx R1 and earlier, SDM-93xx 10.x.x R2 and earlier, and SDM-92xx 9.x.x R1 and earlier allow remote attackers to cause a denial of service hang or reboot via an ICMP packet with the same destination and source address and port, aka the "Land" vulnerability...

netperformer.txt

NetPerformer Frame Relay Access Device FRAD ACT Multiple Vulnerabilities .. Release Date : 8 July 2006 Product Affected : - NetPerformer FRAD ACT SDM-95xx version 7.xx R1, earlier, and possibly newer - NetPerformer FRAD ACT SDM-93xx version 10.x.x R2, earlier, and possibly newer - NetPerformer FR...

[Full-disclosure] NetPerformer FRAD ACT Multiple Vulnerabilities

NetPerformer Frame Relay Access Device FRAD ACT Multiple Vulnerabilities .= Arif Jatmoko =. Release Date : 8 July 2006 Product Affected : - NetPerformer FRAD ACT SDM-95xx version 7.xx R1, earlier, and possibly newer - NetPerformer FRAD ACT SDM-93xx version 10.x.x R2, earlier, and possibly newer -...

Multiple NetPerformer FRAD ACT security vulnerabilities

Buffer overflow on oversized telnet username, LAND attack vulnerability...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Milkeyway Captive Portal 0.1 and 0.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 ipAddress, 2 act, 3 username, and 4 unspecified other parameters in a authuser.php; and the 5 username and 6 unspecified other...

PT-2006-2101 · Simplog · Simplog

Name of the Vulnerable Software and Affected Versions: Simplog versions 1.0.2 and earlier Description: A directory traversal issue exists, allowing remote attackers to include or read arbitrary .txt files. This is achieved via the act and blogid parameters in the index.php file. Recommendations:...

Authentication flaw

Advantage Century Telecommunication ACT P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which 1 might allow remote attackers to obtain sensitive information, such as memory contents and internal operating-system data, by directly accessing the VxWorks WDB...

CVE-2006-0375

The CVE-2006-0375 entry applies to Advantage Century Telecommunication (ACT) P202S IP Phone, running firmware 1.1.21 on VxWorks. The issue is a hardcoded NTP server (Taiwan) that could let an attacker supply false time, block time information, or perform related attacks. The available connected d...

CVE-2006-0374

The CVE-2006-0374 entry applies to Advantage Century Telecommunication (ACT) P202S IP Phone firmware 1.1.21 (software version 1.01.21). The vulnerability involves multiple undocumented ports that could be abused: (1) access to VxWorks WDB remote debugging ONCRPC (wdbrpc) over UDP 17185, potential...

ACT P202S wireless VoIP phone multiple vulnerabilities

VxWorks debugger TCP/17185 access, rlogin access...

[Full-disclosure] ACT P202S VoIP wireless phone multiple undocumented ports/services

I disclosed the following issues at ShmooCon 2006 http://www.shmoocon.org/ during my "VoIP Wireless Phone Security Analysis" presentation. Thanks, --scm =============================================================== DATE: 16 January, 2006 VENDOR: ACT – Advantage Century Telecommunication...

Microsoft SQL (MSSQL) Server Brute Force Logins With Default Credentials (TCP/IP Listener)

The remote Microsoft SQL MSSQL Server has a common / publicly known password for one or more accounts. SPDX-FileCopyrightText: 2005 HD Moore SPDX-FileCopyrightText: New / improved code since 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C...

CVE-2005-0880

content.php in Vortex Portal allows remote attackers to obtain sensitive information via an invalid act parameter, which leaks the full pathname in a PHP error message...

w00w00 on AOL Instant Messenger (serious vulnerability)

================================= AOL Instant Messenger advisory w00w00! http://www.w00w00.org ================================= Author: Matt Conover [email protected] Contributors: nocarrier, napster, and w00w00 collectively PRELUDE Happy w00year! It has been a while, friends, but w00w00 is sti...

PT-1997-1154 · Microsoft · Windows Nt

Name of the Vulnerable Software and Affected Versions: Windows NT affected versions not specified Description: The issue concerns a Windows NT user having inappropriate rights or privileges. This includes privileges such as Act as System, Add Workstation, Backup, Change System Time, Create...