7343 matches found
CVE-2006-7142
The CVE-2006-7142 entry concerns Utimaco Safeguard’s centralized management feature, which stores hard-coded cryptographic keys inside executable binaries for encrypted configuration files. The underlying issue is hard-coded keys that can be extracted from the configuration files, enabling attack...
CVE-2006-7142
The centralized management feature for Utimaco Safeguard stores hard-coded cryptographic keys in executable programs for encrypted configuration files, which allows attackers to recover the keys from the configuration files and decrypt the disk drive...
PT-2007-1420 · Utimaco · Utimaco Safeguard
Name of the Vulnerable Software and Affected Versions: Utimaco Safeguard affected versions not specified Description: The centralized management feature of Utimaco Safeguard stores hard-coded cryptographic keys in executable programs for encrypted configuration files. This allows attackers to...
USN-428-2: Firefox regression
USN-428-1 fixed vulnerabilities in Firefox 1.5. However, changes to library paths caused applications depending on libnss3 to fail to start up. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Several flaws have been found that could be used to perform...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:182)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Stephane Eranian discovered an issue with permon2.0 where, under certain circumstances, the perfmonctl system call may not correctly manage the file descriptor reference count, resulting in the system possibly...
Mandrake Linux Security Advisory : kernel (MDKSA-2007:040)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The isdnpppccpresetallocstate function in drivers/isdn/isdnppp.c in the Linux 2.4 kernel before 2.4.34-rc4, as well as the 2.6 kernel, does not call the inittimer function for the ISDN PPP CCP reset state timer, which ha...
Retrieve Windows Vista username and password-vulnerability warning-the black bar safety net
In Windows vista local administrator password of the hack in an article, we have introduced how to use the Elcom Soft of Proactive Password Auditor PPA to retrieve the lost or forgotten Windows Vista local administrator password, however, in relative terms, the PPA of the crack requires the user ...
Mysteriously replaced Windows XP user password-vulnerability warning-the black bar safety net
Windows XP startup scriptstartup scriptsis a computer in the login screen to appear before running the batch file, which functions similar to the Windows 9X and DOS automatically executed batch file, the autoexec. bat. Using this feature, you can write a batch file to re-set the user password, an...
With Phoenix universal boot disk to resolve local/domain administrator password lost-vulnerability warning-the black bar safety net
The local administrator password is lost, by deleting the SAM file, or by NTPASSWORD software solution. But to solve the domain administrator password is lost, they can not do anything. Then you need to use“Phoenix universal boot disk”, this article will discuss in detail the use of this disk to...
CVE-2007-0672
LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service disk consumption and daemon hang via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in...
CVE-2007-0672
CVE-2007-0672 affects BrightStor Mobile Backup 4.0 (LGSERVER.EXE). A remote attacker can cause a denial of service by sending a crafted authentication packet (value 0xFFFFFF7F), causing excessive writes to a .USX file under CA_BABLDdata\Server\data\transfer\ that leads to disk consumption and dae...
CVE-2005-4825
Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service disk consumption, or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332...
Mac OS X 10.4.8 (UserNotificationCenter) Privilege Escalation Exploit
No description provided by source. !/usr/bin/ruby Copyright c 2007 Kevin Finisterre kflists at digitalmunition.com Lance M. Havok lmh at info-pull.com All pwnage reserved. "Exploit" for MOAB-22-01-2007: All your crash are belong to us. require 'fileutils' bugselected = ARGV0 || 0.toi...
Code injection
BEA WebLogic Server 6.1 through 6.1 SP7, and 7.0 through 7.0 SP7 allows remote attackers to cause a denial of service disk consumption via requests containing malformed headers, which cause a large amount of data to be written to the server log...
CVE-2007-0421
BEA WebLogic Server 6.1 through 6.1 SP7, and 7.0 through 7.0 SP7 allows remote attackers to cause a denial of service disk consumption via requests containing malformed headers, which cause a large amount of data to be written to the server log...
CVE-2007-0421
BEA WebLogic Server 6.1 through 6.1 SP7, and 7.0 through 7.0 SP7 allows remote attackers to cause a denial of service disk consumption via requests containing malformed headers, which cause a large amount of data to be written to the server log...
Network Security Series knowledge of CGI exploits collection on-vulnerability warning-the black bar safety net
Following the collection and collation of some of the famous CGI vulnerability and provided some security recommendations and solutions, if the server of the presence of these vulnerabilities not patched, then, each vulnerability is likely will fill the intruder utilization, increase Server been...
MOAB-15-01-2007.rb.txt
!/usr/bin/ruby Exploit for MOAB-15-01-2007 c 2006 LMH . Note: It's a generic exploit, you can use it over any binary writable which is set as root setuid by diskutil repair permissions. Simply change the path. Blame Apple for doing such a piece of and relying on flawed DAC. Line-noise: Jackass of...
Memory corruption
Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption...
CVE-2007-0197
Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption...