1341 matches found
Buffer overflow
Buffer overflow in Hikvision DVR DS-7204 Firmware 2.2.10 build 131009, and other models and versions, allows remote attackers to execute arbitrary code via an RTSP PLAY request with a long Authorization header...
CVE-2014-4880
CVE-2014-4880 describes a buffer overflow in Hikvision DVR RTSP handling that enables remote code execution. The NVD entry notes a vulnerability in Hikvision DVR DS-7204 firmware (2.2.10 build 131009) and other models, exploitable via a long RTSP PLAY request with an oversized Authorization heade...
CVE-2014-1830
Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...
DEBIAN-CVE-2014-1829
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
CVE-2014-1829
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
DEBIAN-CVE-2014-1830
Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...
PYSEC-2014-13
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
PYSEC-2014-14
Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...
PYSEC-2014-13
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
CVE-2014-1829
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
CVE-2014-1829
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
MGASA-2014-0409 Updated python-requests packages fix security vulnerabilities
Updated python-requests packages fix security vulnerability: Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered th...
CVE-2013-3092
The vulnerability CVE-2013-3092 affects the Belkin N300 (F7D7301v1) router. The issue arises from incorrect validation of the HTTP Authorization header, enabling remote attackers to bypass authentication and escalate privileges. The impact is authentication bypass with full or elevated access, as...
CVE-2013-3092
The Belkin N300 F7D7301v1 router allows remote attackers to bypass authentication and gain privileges via vectors related to incorrect validation of the HTTP Authorization header...
CVE-2014-1829
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
UBUNTU-CVE-2014-1830
Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...
UBUNTU-CVE-2014-1829
Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...
Security issue when parsing the Authorization header
More info at https://symfony.com/cve-2014-6061...
MailEnable Authorization Header Buffer Overflow
No description provided by source. $Id: mailenableauthheader.rb 9719 2010-07-07 17:38:59Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...
Fedora Update for nodejs-aws-sign FEDORA-2013-11780
Check for the Version of nodejs-aws-sign OpenVAS Vulnerability Test Fedora Update for nodejs-aws-sign FEDORA-2013-11780 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...