24 matches found
Code injection
TippingPoint IPS before 20070710 does not properly handle a hex-encoded alternate Unicode '/' slash character, which might allow remote attackers to send certain network traffic and avoid detection, as demonstrated by a cmd.exe attack...
CVE-2002-1932
CVE-2002-1932 affects Microsoft Windows XP and Windows 2000. When configured to send administrative alerts and with the "+Do not overwrite events (clear log manually)" option enabled, the system fails to notify administrators when the event log reaches its maximum size, allowing local users and r...
CVE-2004-0920
CVE-2004-0920 affects Symantec Norton AntiVirus 2004 and earlier. A vulnerability in handling reserved MS-DOS device names (e.g., AUX, CON, COM1, LPT1) during file/ directory scanning can allow a virus to evade detection or cause an application crash, potentially enabling DoS. The issue arises wh...
DEBIAN-CVE-2002-0896
The throttle capability in Swatch may fail to report certain events if 1 the same type of event occurs after the throttle period, or 2 when multiple events matching the same "watchfor" expression do not occur after the throttle period, which could allow attackers to avoid detection...