5302 matches found
Ipswitch IMAIL 11.01 reversible encryption + weak ACL
No description provided by source. |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...
Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL
|------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | | |-------------------------------------------------...
Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL
Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 |...
HTTP SSL Certificate Information
Parse the server SSL certificate to obtain the common name and signature algorithm...
Ubuntu Update for gzip vulnerabilities USN-889-1
Ubuntu Update for Linux kernel vulnerabilities USN-889-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8891.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for gzip vulnerabilities USN-889-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Mandriva Update for gzip MDVSA-2010:020 (gzip)
Check for the Version of gzip OpenVAS Vulnerability Test Mandriva Update for gzip MDVSA-2010:020 gzip Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : gzip vulnerabilities (USN-889-1)
It was discovered that gzip incorrectly handled certain malformed compressed files. If a user or automated system were tricked into opening a specially crafted gzip file, an attacker could cause gzip to crash or possibly execute arbitrary code with the privileges of the user invoking the program...
CentOS 5 : openssl (CESA-2010:0054)
Updated openssl packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL v2/v3 and Transport Layer...
CentOS 3 / 4 / 5 : gzip (CESA-2010:0061)
An updated gzip package that fixes one security issue is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gzip package provides the GNU gzip data compression program. An integer underfl...
[SECURITY] [DSA 1974-1] New gzip packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1974-1 [email protected] http://www.debian.org/security/ Steffen Joeris January 20, 2010 http://www.debian.org/security/faq -...
RedHat Update for openssl RHSA-2010:0054-01
Check for the Version of openssl OpenVAS Vulnerability Test RedHat Update for openssl RHSA-2010:0054-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
DSA-1974-1 gzip - arbitrary code execution
Bulletin has no description...
Four Questions for Bruce Schneier on the GSM Cipher Crack
Math is hard and cryptography is even harder. So in light of the news that another of the ciphers used to secure traffic on 3G GSM networks has been cracked, we turned to mathematician and cryptographer Bruce Schneier to explain the attack and its ramifications. So here are Schneier’s answer to a...
How to generate Rainbow table-vulnerability warning-the black bar safety net
In a technical Forum accidentally saw a rainbow table download, under a few days of md5 Rainbow tables discover the number of seeds is too little, and the mainstream of the rainbow table is 100G or more online search all over again after the only think you can generate your own. Why bother to...
FreeFTPd 1.0.10 Key Exchange Algorithm String Buffer Overflow
This module exploits a simple stack buffer overflow in FreeFTPd 1.0.10 This flaw is due to a buffer overflow error when handling a specially crafted key exchange algorithm string received from an SSH client. This module is based on MC's freesshdkeyexchange exploit. This module requires Metasploit...
OpenSSL: Multiple vulnerabilities
Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been reported in OpenSSL: Marsh Ray of PhoneFactor and Martin Rex of SAP...
Serv-U < 9.1.0.0
According to its banner, the installed version of Serv-U is earlier than 9.1.0.0, and therefore affected by the following issues : - A boundary error in the web administration interface when parsing session cookies can result in a stack-based buffer overflow. CVE-2009-4873 - A boundary error in t...
ssl-cert NSE Script
Retrieves a server's SSL certificate. The amount of information printed about the certificate depends on the verbosity level. With no extra verbosity, the script prints the validity period and the commonName, organizationName, stateOrProvinceName, and countryName of the subject. 443/tcp open http...
CVE-2009-4006
Stack-based buffer overflow in the TEA decoding algorithm in RhinoSoft Serv-U FTP server 7.0.0.1, 9.0.0.5, and other versions before 9.1.0.0 allows remote attackers to execute arbitrary code via a long hexadecimal string...
CVE-2009-4006
Stack-based buffer overflow in the TEA decoding algorithm in RhinoSoft Serv-U FTP server 7.0.0.1, 9.0.0.5, and other versions before 9.1.0.0 allows remote attackers to execute arbitrary code via a long hexadecimal string...