CVE-2023-40707

There are no requirements for setting a complex password in the built-in web server of the SNAP PAC S1 Firmware version R10.3b, which could allow for a successful brute force attack if users don't set up complex credentials...

EUVD-2013-2893

Malware in sbrugna...

EUVD-2011-2181

Malware in sbrugna...

EUVD-2012-3829

Malware in sbrugna...

EUVD-2015-8503

Malware in sbrugna...

EUVD-2010-0017

Malware in sbrugna...

EUVD-2018-9122

Malware in sbrugna...

EUVD-2020-3970

Malware in sbrugna...

CVE-2010-2968

The FTP daemon in Wind River VxWorks does not close the TCP connection after a number of failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force attack...

PT-2025-22562 · Schule · Schule

Name of the Vulnerable Software and Affected Versions: Schule versions prior to 1.0.1 Description: The issue concerns the generateOTP function, which generates a 4-digit numeric One-Time Password OTP with a limited range of 9000 possible combinations. This small keyspace makes the OTP highly...

CVE-2012-4571

Python Keyring 0.9.1 does not securely initialize the cipher when encrypting passwords for CryptedFileKeyring files, which makes it easier for local users to obtain passwords via a brute-force attack...

CVE-2004-0294

YaBB 1 SP 1.3.1 displays different error messages when a user exists or not, which makes it easier for remote attackers to identify valid users and conduct a brute force password guessing attack...

SSH 3 AllowedAuthentications Remote Bypass

The remote host is running a version of SSH that is older than 3.1.2 and newer or equal to 3.0.0. There is a vulnerability in this release that may, under some circumstances, allow users to authenticate using a password whereas it is not explicitly listed as a valid authentication mechanism. An...

CVE-2001-0395

Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which could allow remote attackers to conduct brute force password guessing...