CVE-2005-2506

CVE-2005-2506 describes an algorithmic complexity vulnerability in CoreFoundation on Mac OS X 10.3.9 and 10.4.2. The issue arises in the handling of crafted Gregorian dates, allowing an attacker to trigger excessive CPU usage and cause a denial of service. The affected component is CoreFoundation...

Windows Execute net user /ADD

Create a new user and add them to local administration group. Note: The specified password is checked for common complexity requirements to prevent the target machine rejecting the user for failing to meet policy requirements. Complexity check: 8-14 chars 1 UPPER, 1 lower, 1 digit/special This...

Network Solutions Crypt-PW Authentication-Scheme vulnerability

Problem: While crypt password authentication is not in and of itself very secure, Network Sulotions have made it even less so by including the first two characters of the password as the salt of the encrypted form. While the password is transmitted via a secure session, the encrypted form is...

flaw in RH ``mkpasswd'' command

Hey, The mkpasswd password generator that ships in the expect'' package of at least RedHat 6.2 generates only a relatively small number 2^15 for the default password length of passwords. Presumably this is a result of trying to apply too many rules of what is a good'' password to the generation...

PT-1998-1091 · Microsoft · Windows Nt

Name of the Vulnerable Software and Affected Versions: Windows NT affected versions not specified Description: The issue concerns a Windows NT domain where a user or administrator account has a password that can be easily guessed. Recommendations: For all affected versions, ensure that strong,...