CVE-2003-0340

Demarc Puresecure 1.6 stores authentication information for the logging server in plaintext, which allows attackers to steal login names and passwords to gain privileges...

Demarc PureSecure 1.0.5 Authentication Check SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4520/info Demarc PureSecure is a commercially available graphical front-end for Snort, in addition to being a generalized network monitoring solution. Snort is an open-source NIDS Network Intrusion Detection System. Demar...

New Snort Bypass - Patch - Bypass of Patch

There was a Snort evasion bug posted on BugTraq today http://www.securityfocus.com/archive/1/435600/30/0/threaded This attack will not show up in alert file at all perl -e 'print "GET x90x90x0d http/1.0rnrn"'|nc 192.168.1.3 80 Notice the x0d CR character r above. The following will show up in ale...

CVE-2003-0340

CVE-2003-0340 affects Demarc Puresecure 1.6, where authentication data for the logging server is stored in plaintext. This plaintext storage enables an attacker to obtain login names and passwords, enabling privilege escalation. The available sources confirm the impact but do not provide patch de...

CVE-2003-0340

Demarc Puresecure 1.6 stores authentication information for the logging server in plaintext, which allows attackers to steal login names and passwords to gain privileges...

Demarc Puresecure v1.6 - Plaintext password issue -

According to Demarc Puresecure's Website; Demarc PureSecureTM is a one of a kind, Total Intrusion Detection System TIDS, which provides an unsurpassed level of comprehensive security. For the first time you will be able to reliably prevent, detect, and deter internal and external threats to your...

CVE-2003-0340

Demarc Puresecure 1.6 stores authentication information for the logging server in plaintext, which allows attackers to steal login names and passwords to gain privileges...

CVE-2002-0539

Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the skey cookie...

CVE-2002-0539

Demarc PureSecure 1.05 is affected by a SQL injection vulnerability in the session ID stored in the s_key cookie, enabling remote attackers to gain administrative privileges. The available sources describe the flaw as a remote authentication bypass via SQL injection affecting the session identifi...

CVE-2002-0539

Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the skey cookie...

[NEWS] Demarc PureSecure Allows Users to Bypass Login Restrictions

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion When was the last time you checked your server's security? How about a monthly report? http://www.AutomatedScanning.com - Know that you're...

Demarc PureSecure 1.0.5 - Authentication Check SQL Injection

Demarc PureSecure 1.0.5 - Authentication Check SQL Injection source: https://www.securityfocus.com/bid/4520/info Demarc PureSecure is a commercially available graphical front-end for Snort, in addition to being a generalized network monitoring solution. Snort is an open-source NIDS Network...

Demarc PureSecure 1.0.5 - Authentication Check SQL Injection

source: https://www.securityfocus.com/bid/4520/info Demarc PureSecure is a commercially available graphical front-end for Snort, in addition to being a generalized network monitoring solution. Snort is an open-source NIDS Network Intrusion Detection System. Demarc PureSecure will run on most Linu...