EUVD-2018-3094

Malware in sbrugna...

EUVD-2017-15776

Malware in sbrugna...

CVE-2023-5879 Aladdin Connect Android Application Insecure Storage

Users’ product account authentication data was stored in clear text in The Genie Company Aladdin Connect Mobile Application Version 5.65 Build 2075 and below on Android Devices. This allows the attacker, with access to the android device, to potentially retrieve users' clear text authentication...

Junos OS: Clear Text Authentication Credentials (JSA10969)

According to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability which is when the user uses console management port to authenticate, the credentials used during device authentication are written to a log file in clear text. This issue does not affect...

EMC NetWorker Server 9.x < 9.1.1.9 / 9.2.x < 9.2.1.4 / 18.1.0.1

The version of EMC NetWorker Server installed on the remote Windows host is 9.x prior to 9.1.1.9 or 9.2.x prior to 9.2.1.4 or 18.1.0.1. It is, therefore, affected by a Clear-Text authentication over network vulnerability. An unauthenticated attacker in the same network could potentially exploit...

CVE-2018-11050

Dell EMC NetWorker versions between 9.0 and 9.1.1.8 through 9.2.1.3, and the version 18.1.0.1 contain a Clear-Text authentication over network vulnerability in the Rabbit MQ Advanced Message Queuing Protocol AMQP component. User credentials are sent unencrypted to the remote AMQP service. An...

CVE-2018-11050

Dell EMC NetWorker versions between 9.0 and 9.1.1.8 through 9.2.1.3, and the version 18.1.0.1 contain a Clear-Text authentication over network vulnerability in the Rabbit MQ Advanced Message Queuing Protocol AMQP component. User credentials are sent unencrypted to the remote AMQP service. An...

Dell EMC NetWorker Clear-Text Authentication Vulnerability

Dell EMC NetWorker is a suite of unified backup and recovery software from Dell USA. The software provides backup and recovery, deduplication elimination, backup reporting and other features. A Clear-Text authentication vulnerability exists in Dell EMC NetWorker, where user credentials are sent i...

CVE-2017-6722

A vulnerability in the Extensible Messaging and Presence Protocol XMPP service of Cisco Unified Contact Center Express UCCx could allow an unauthenticated, remote attacker to masquerade as a legitimate user, aka a Clear Text Authentication Vulnerability. More Information: CSCuw86638. Known Affect...

Authentication flaw

A vulnerability in the Extensible Messaging and Presence Protocol XMPP service of Cisco Unified Contact Center Express UCCx could allow an unauthenticated, remote attacker to masquerade as a legitimate user, aka a Clear Text Authentication Vulnerability. More Information: CSCuw86638. Known Affect...

CVE-2017-6722

A vulnerability in the Extensible Messaging and Presence Protocol XMPP service of Cisco Unified Contact Center Express UCCx could allow an unauthenticated, remote attacker to masquerade as a legitimate user, aka a Clear Text Authentication Vulnerability. More Information: CSCuw86638. Known Affect...

CVE-2017-6722

A vulnerability in the Extensible Messaging and Presence Protocol XMPP service of Cisco Unified Contact Center Express UCCx could allow an unauthenticated, remote attacker to masquerade as a legitimate user, aka a Clear Text Authentication Vulnerability. More Information: CSCuw86638. Known Affect...

SEC Consult SA-20140710-2 :: Multiple critical vulnerabilites in Schrack MICROCONTROL emergency light system

SEC Consult Vulnerability Lab Security Advisory 20140710-2 ======================================================================= title: Multiple critical vulnerabilites product: Schrack MICROCONTROL emergency light system vulnerable version: before 1.7.0 937 fixed version: 1.7.0 937 impact:...

Schrack MICROCONTROL XSS / Disclosure / Weak Default Password

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple critical vulnerabilites product: Schrack MICROCONTROL emergency light system vulnerable version: before 1.7.0 937 fixed version: 1.7.0 937 impact: critical...

Multiple Vendors IPMI 2.0 Authentication Bypass via Cipher 0

Authentication Bypass vulnerability have been reported in IPMI 2.0 Authentication. When using cipher type 0, it is an indicator that the client wants to use clear-text authentication,that allows access with any password...

Cheops NG clear text authentication

A Cheops NG agent is running on the remote host. Description : Cheops NG is running on this port. Users with a valid account on this machine can connect to this service and use it to map your network, port scan machines and identify running services. Passwords are transmitted in clear text and...

Cheops NG clear text authentication

A Cheops NG agent is running on the remote host. Users with a valid account on this machine can connect to this service and use it to map the network, port scan machines and identify running services. Passwords are transmitted in clear text and could be sniffed. More, using this Cheops agent, it ...

Cisco HSRP Weakness/DoS

Hi I was playing with Cisco's HSRP Hot Standby Routing Protocol, and there is a major weakness in that protocol that allow any host in a LAN segment to make a HSRP DoS. Short very explain of HSRP. HSRP uses UDP on port 1985 to multicast address 224.0.0.2, and the authentication is in clear text...

NetStructure 7180 remote backdoor vulnerability

@Stake Inc. L0pht Research Labs www.atstake.com www.L0pht.com Security Advisory Advisory Name: NetStructure 7180 remote backdoor vulnerability Release Date: May 8th, 2000 Application: Intel NetStructure 7180 previously the Ipivot Commerce Accelerator 8000 Severity: Compromise from a remote networ...