Lucene search
K

93 matches found

ThreatPost
ThreatPost
added 2012/10/29 1:12 p.m.13 views

DHS Warns ICS, SCADA Owners About Increase in Malicious Activity

An alert from the Department of Homeland Security late last week urges private- and public-sector industrial control system ICS owners to be proactive in auditing the security, particularly, authentication controls of their systems. The alert is in response to a growing concern over the number of...

0.2AI score
Exploits0References6
NVD
NVD
added 2007/07/23 11:30 p.m.18 views

CVE-2007-3945

Rule Set Based Access Control RSBAC before 1.3.5 does not properly use the Linux Kernel Crypto API for the Linux kernel 2.6.x, which allows context-dependent attackers to bypass authentication controls via unspecified vectors, possibly involving User Management password hashing and unchecked...

6.4CVSS7.2AI score0.0248EPSS
Exploits0References6
Prion
Prion
added 2007/07/23 11:30 p.m.15 views

Authentication flaw

Rule Set Based Access Control RSBAC before 1.3.5 does not properly use the Linux Kernel Crypto API for the Linux kernel 2.6.x, which allows context-dependent attackers to bypass authentication controls via unspecified vectors, possibly involving User Management password hashing and unchecked...

6.4CVSS7.6AI score0.0248EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2007/07/23 11:0 p.m.22 views

CVE-2007-3945

Rule Set Based Access Control RSBAC before 1.3.5 does not properly use the Linux Kernel Crypto API for the Linux kernel 2.6.x, which allows context-dependent attackers to bypass authentication controls via unspecified vectors, possibly involving User Management password hashing and unchecked...

7.2AI score0.0248EPSS
Exploits0References6
NVD
NVD
added 2007/04/24 5:19 p.m.18 views

CVE-2007-0738

The Login Window in Apple Mac OS X 10.4 through 10.4.9 does not display the screen saver authentication dialog in certain circumstances when waking from sleep, even though the "require a password to wake the computer from sleep" option is enabled, which allows local users to bypass authentication...

4.6CVSS6.2AI score0.0036EPSS
Exploits0References8
Prion
Prion
added 2007/04/24 5:19 p.m.19 views

Authentication flaw

The Login Window in Apple Mac OS X 10.4 through 10.4.9 does not display the screen saver authentication dialog in certain circumstances when waking from sleep, even though the "require a password to wake the computer from sleep" option is enabled, which allows local users to bypass authentication...

4.6CVSS6.3AI score0.0036EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2007/04/24 5:0 p.m.27 views

CVE-2007-0738

The Login Window in Apple Mac OS X 10.4 through 10.4.9 does not display the screen saver authentication dialog in certain circumstances when waking from sleep, even though the "require a password to wake the computer from sleep" option is enabled, which allows local users to bypass authentication...

6.2AI score0.0036EPSS
Exploits0References8
Cvelist
Cvelist
added 2007/04/24 5:0 p.m.20 views

CVE-2007-0739

The Login Window in Apple Mac OS X 10.4 through 10.4.9 displays the software update window beneath the loginwindow authentication dialog in certain circumstances related to running scheduled tasks, which allows local users to bypass authentication controls...

6AI score0.00398EPSS
Exploits0References8
Cvelist
Cvelist
added 2007/03/16 9:0 p.m.18 views

CVE-2007-1471

admin/default.asp in Orion-Blog 2.0 allows remote attackers to bypass authentication controls and gain privileges via a direct URL request for admin/AdminBlogNewsEdit.asp...

7.1AI score0.07441EPSS
Exploits0References3
NVD
NVD
added 2006/08/31 10:4 p.m.12 views

CVE-2006-4502

ezPortal/ztml CMS 1.0 allows remote attackers to bypass authentication controls via a direct request to the "Administration Area" script...

7.5CVSS6.9AI score0.01755EPSS
Exploits1References4
Prion
Prion
added 2006/02/16 11:2 a.m.13 views

Authentication flaw

profile.php in Reamday Enterprises Magic News Lite 1.2.3, when registerglobals is enabled, allows remote attackers to modify program behavior, potentially bypassing authentication controls, via modified 1 action, 2 passwd, 3 adminpassword, 4 newpasswd, and 5 confirmpasswd variables, which are not...

2.6CVSS7.4AI score0.01278EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2006/02/16 11:0 a.m.41 views

CVE-2006-0722

CVE-2006-0722 affects Reamday Enterprises’ Magic Downloads 1.1.3. When register_globals is ON, the vulnerable settings.php allows remote attackers to modify program behavior via uninitialized variables (action, passwd, admin_password, new_passwd, confirm_passwd), potentially bypassing authenticat...

2.6CVSS6.9AI score0.01453EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/02/16 11:0 a.m.33 views

CVE-2006-0724

profile.php in Reamday Enterprises Magic News Lite 1.2.3, when registerglobals is enabled, allows remote attackers to modify program behavior, potentially bypassing authentication controls, via modified 1 action, 2 passwd, 3 adminpassword, 4 newpasswd, and 5 confirmpasswd variables, which are not...

6.8AI score0.01278EPSS
Exploits1References5
Rows per page
Query Builder