CVE-2005-1867

Symantec Brightmail AntiSpam before 6.0.2 has a hard-coded database administrator password, which allows remote attackers to gain privileges...

Portail PHP < 1.3 SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w SQL Injection Exploit for Portail PHP 1.3 This exploit show the username of the administrator of the portal and his password crypted in MD5 Related advisory: http://www.securityfocus.com/archive/1/398728/2005-05-21/2005-05-27/0 Coded by Alberto...

CVE-2005-0349

The production release of the UniversalAgent for UNIX in BrightStor ARCserve Backup 11.1 contains hard-coded credentials, which allows remote attackers to access the file system and possibly execute arbitrary commands...

ICUII 7.0 - Local Password Disclosure

/ ICUII 7.0 Local Password Disclosure Exploit by Kozan Application: ICUII 7.0 and probably prior versions Procuder: Cybration - www.icuii.com Vulnerable Description: ICUII 7.0 discloses passwords to local users. Discovered & Coded by Kozan Credits to ATmaCA www.netmagister.com -...

DeluxeFtp 6.x - Local Password Disclosure

/ DeluxeFtp 6.x Local Password Disclosure Exploit by Kozan Application: DeluxeFtp 6.x and probably prior versions Vendor: www.deluxeftp.com Vulnerable Description: DeluxeFtp 6.x discloses passwords to local users. Bug Discovered by: Lostmon Exploit Coded by: Kozan Credits to ATmaCA Web:...

CVE-2005-0612

Cisco IP/VC Videoconferencing System 3510, 3520, 3525 and 3530 contain hard-coded default SNMP community strings, which allows remote attackers to gain access, cause a denial of service, and modify configuration...

CVE-2005-0496

The CVE-2005-0496 entry applies to Arkeia Network Backup Client 5.x, where hard-coded credentials act as a back door. This allows remote attackers to access the file system and, per connected sources, potentially execute arbitrary commands. The Nessus/PT-2005-1551 item notes a default/account in ...

CVE-2005-0496

Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands...

CVE-2005-0496

Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands...

PT-2005-1551 · Arkeia · Arkeia Network Backup Client

Name of the Vulnerable Software and Affected Versions: Arkeia Network Backup Client version 5.x Description: The issue concerns hard-coded credentials in the software, which act as a back door. This back door allows remote attackers to access the file system and possibly execute arbitrary command...

PT-2005-1470 · Citrusdb · Citrusdb

Name of the Vulnerable Software and Affected Versions: CitrusDB versions 0.3.6 and earlier Description: The issue allows remote attackers to bypass authentication and gain privileges by calculating the MD5 checksum of the user name combined with the "boogaadeeboo" string, which is hard-coded in t...

CVE-2005-0349

The CVE-2005-0349 entry covers BrightStor ARCserve Backup 11.1 UniversalAgent for UNIX, where the production release contains hard-coded credentials that enable remote access to the file system and may allow execution of arbitrary commands. Connected details specify a default/admin-like account w...

CVE-2005-0349

The production release of the UniversalAgent for UNIX in BrightStor ARCserve Backup 11.1 contains hard-coded credentials, which allows remote attackers to access the file system and possibly execute arbitrary commands...

[Full-Disclosure] iDEFENSE Security Advisory 02.10.05: Computer Associates BrightStor ARCserve Backup UniversalAgent Backdoor Vulnerability

Computer Associates BrightStor ARCserve Backup UniversalAgent Backdoor Vulnerability iDEFENSE Security Advisory 02.10.05 www.idefense.com/application/poi/display?id=198&type=vulnerabilities February 10, 2005 I. BACKGROUND BrightStor ARCserve Backup r11.1 delivers leading backup and restore...

ngIRCd 0.8.1 - Remote Denial of Service (2)

/ Ip under usage is actually port /str0ke / / -=x0n3-h4ck=--=00:48:19=--=/root=--=Account: root=- -= ./ngircddos x0n3-h4ck.org 12345 Angel DarkChan -= NGircd Attack Success! Lets party! The Irc Server is Killed !! Exploit: NGircd NOTE: The channel must be EMPTY to let the exploit use +I mode...

ngIRCd <= 0.8.1 Remote Denial of Service Exploit (2)

No description provided by source. / Ip under usage is actually port /str0ke / / -=x0n3-h4ck=--=00:48:19=--=/root=--=Account: root=- -= ./ngircddos x0n3-h4ck.org 12345 Angel DarkChan -= NGircd = 0.8.1 Remote DoS ::: Coded by Expanders =- Connecting to target ...Done Building evil buffer ...Done...

ngIRCd <= 0.8.1 Remote Denial of Service Exploit (2)

Exploit for linux platform in category dos / poc ==================================================== ngIRCd Attack Success! Lets party! The Irc Server is Killed !! Exploit: NGircd NOTE: The channel must be EMPTY to let the exploit use +I mode Example: / include include include include include...

CVE-2004-1322

Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, which allows remote attackers to gain unauthorized access and change configuration settings or read outgoing or incoming e-mail messages...

CVE-2004-2050

eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell...

CVE-2004-1322

Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, which allows remote attackers to gain unauthorized access and change configuration settings or read outgoing or incoming e-mail messages...