MD5 - Message Digest Algorithm Hash Collision

source: https://www.securityfocus.com/bid/11849/info The MD5 algorithm is reported prone to a hash collision weakness. This weakness reportedly allows attackers to create multiple, differing input sources that, when the MD5 algorithm is used, result in the same output fingerprint. It has been...

Imailpwdump.cpp

/ IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In order to decrypt user password we need a key. IMail uses usernam...

IPSwitch IMail Server 8.1 - Local Password Decryption Utility

IPSwitch IMail Server 8.1 - Local Password Decryption Utility / IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In...

Unreal ircd ip cloacking protection bypass

To hide real IP hash of IP address with simple hashing algorithm is used...

CVE-2004-0459

CVE-2004-0459 concerns the Clear Channel Assessment (CCA) in IEEE 802.11 using DSSS. The vulnerability arises in the CCA algorithm that can be exploited by a remote attacker transmitting a crafted RF signal to make the channel appear busy, causing denial of service and preventing wireless devices...

CVE-2004-1861

Invision NetSupport School Pro uses a weak encryption algorithm to encrypt passwords, which allows local users to obtain passwords...

CVE-2003-0141

CVE-2003-0141 involves RealOne Player 6.0.11.x and earlier and RealPlayer 8/RealPlayer Plus 8 6.0.9.584 (and related RealPlayer variants) where the PNG deflate algorithm can trigger heap corruption by processing a PNG containing compressed data using fixed trees with length values 286–287, treate...

WFVote

Product : WFVote Version : 0.2 WebSite : http://jid.2yd.ru Problem : Admin access rus Description: ------------ setadmpw.php ========= ... myflock; $f=fopen"votepwd.dat","w"; fputs$f,md5$admpwd1; fclose$f; myfunlock; ... ========= votepwd.dat ======= 21232f297a57a5a743894a0e4a801fc3 =======...

PHP Message Board/Guestbook

Product : PHP Message Board/Guestbook Version : First WebSite : http://www.cyber-cats.com/php Problem : Viewing passwords file Description: ------------ In this script passwords are in passwd.txt file They are encrypted by DES algorithm. In Shrot, all who want see the passwords can make it...

GiantRat Mailer exposes PoP password

Security advisory Issue: GiantRat Mailer exposes plain text PoP password Date: 03/13/03 Vendor first notified: Febuary 2003 Affected versions: All tested v3.1, 2.x, 1.x ABOUT GiantRat Mailer: GiantRat Mailer is an innovative email client that has settings for the sight-impaired and has optional...

GiantRat Mailer exposes PoP password

Security advisory Issue: GiantRat Mailer exposes plain text PoP password Date: 03/13/03 Vendor first notified: Febuary 2003 Affected versions: All tested v3.1, 2.x, 1.x ABOUT GiantRat Mailer: GiantRat Mailer is an innovative email client that has settings for the sight-impaired and has optional...

DEBIAN-CVE-2003-0032

Memory leak in libmcrypt before 2.5.5 allows attackers to cause a denial of service memory exhaustion via a large number of requests to the application, which causes libmcrypt to dynamically load algorithms via libtool...

DSA-228 libmcrypt - buffer overflows and memory leak

Bulletin has no description...

CVE-2002-1910

Click2Learn Ingenium Learning Management System 5.1 and 6.1 uses weak encryption for passwords reversible algorithm, which allows attackers to obtain passwords...

OpenVMS weak passwords

Llimit character set, case insensitivity and fast encryption algorythm allow password bruteforcing...

CVE-2002-0059

CVE-2002-0059: The decompression algorithm in zlib 1.1.3 and earlier can cause inflateEnd to free memory more than once (a double free), enabling memory corruption that may allow arbitrary code execution via malformed compression data. Affected: zlib up to version 1.1.3 and earlier. Root cause: d...

Perl2Exe 1.0 95.0 26.0 - Code Obfuscation

Perl2Exe 1.0 95.0 26.0 - Code Obfuscation source: https://www.securityfocus.com/bid/6909/info Perl2Exe obfuscates Perl source code using a reversible algorithm when converting it to an executable format. This occurs when the "encrypt" option is selected. Those who use Perl2Exe with the expectatio...

Perl2Exe 1.0 9/5.0 2/6.0 - Code Obfuscation

source: https://www.securityfocus.com/bid/6909/info Perl2Exe obfuscates Perl source code using a reversible algorithm when converting it to an executable format. This occurs when the "encrypt" option is selected. Those who use Perl2Exe with the expectation that the source code will be concealed...

OpenSSH & S/Key information leakage

FIRST: Neither of these information leakage issues is a security bug in itself. Both S/Key and OpenSSH are secure even with this issue. However, this information leakage may assist a hostile attacker. General S/Key Information Leakage: As is commonly known, the S/Key and OPIE one-time password...

EFTP Version 2.0.7.337 vulnerabilities

EFTP Version 2.0.7.337 vulnerabilities According to their site @ www.eftp.org "EFTP is a 32bit combined Client/Server application, basically 2 programs in one. EFTP incorporates the 448bit Blowfish Encryption Algorithm and the FTP protocol RFC 959 implementation to provide secure file transfers...