4646 matches found
CVE-2004-0182
Mailman before 2.0.13 allows remote attackers to cause a denial of service crash via an email message with an empty subject field...
CVE-2004-0182
Removed by vendor...
Important: Red Hat Security Advisory: mailman security update
An updated mailman package that closes a DoS vulnerability in mailman introduced by RHSA-2004:019 is now available. Mailman is a mailing list manager. On February 19 2004, Red Hat issued security erratum RHSA-2004:019 to correct a DoS Denial of Service vulnerability where an attacker could send a...
Proofpoint protection server unauthorized access
User root with empty password can access mySQL...
TYPSoft FTP Server 1.10 may be crashed
Application: TYPSoft FTP Server http://www.typsoft.com Version: 1.10 Bug: Denial Of Service Author: intuit e-mail: [email protected] web/forum: http://code.unixserver.at 1. Description 2. The bug 3. The code 4. The fix ^^^^^^^^^^^^^^^^ 1. Description: ^^^^^^^^^^^^^^^^ Vendor's Description:...
TypSoft FTP DoS
DoS on empty username...
Linksys WRT54G Empty GET Request Remote DoS
It is possible to freeze the remote web server by sending an empty GET request. This is known to affect Linksys WRT54G routers. TRUSTED...
wzdftpd DoS
DoS он PORT or USER command with empty argument...
Multiple bugs in ST FTP
Buffer overflow on oversized username, unauthorized access if username is empty...
Abyss Web Server Malformed GET Request Remote DoS
It was possible to kill the remote web server by sending empty HTTP request headers namely Connection: or Range:. An attacker may use this flaw to crash the affected application, thereby denying service to legitimate users. C Tenable Network Security, Inc. References: Date: Sat, 5 Apr 2003 12:21:...
Emule 0.27b - Empty Nickname Chat Request Denial of Service
Emule 0.27b - Empty Nickname Chat Request Denial of Service source: https://www.securityfocus.com/bid/7189/info A denial of service vulnerability has been reported for Emule. The vulnerability occurs when a Emule client recieves a chat request without a nickname. This vulnerability was reported f...
Emule 0.27b - Empty Nickname Chat Request Denial of Service
source: https://www.securityfocus.com/bid/7189/info A denial of service vulnerability has been reported for Emule. The vulnerability occurs when a Emule client recieves a chat request without a nickname. This vulnerability was reported for Emule clients prior to 0.27c...
Weak Okens Stormwatch password
Empty sa account password...
CVE-2002-1284
The wizard in KGPG 0.6 through 0.8.2 does not properly provide the passphrase to gpg when creating new keys, which causes secret keys to be created with an empty passphrase and allows local attackers to steal the keys if they can be read...
GLSA: kgpg
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - -------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200211-002 - - -------------------------------------------------------------------- PACKAGE : kgpg SUMMARY : keys generated in wizard have an...
pam - serious security violation
A serious security violation in PAM was discovered. Disabled passwords i.e. those with '' in the password file were classified as empty password and access to such accounts is granted through the regular login procedure getty, telnet, ssh. This works for all such accounts whose shell field in the...
DSA-144 wwwoffle - improper input handling
Bulletin has no description...
pine DoS
Empty boundary field causes pine to crash...
CVE-2001-1132
Mailman 2.0.x before 2.0.6 allows remote attackers to gain access to list administrative pages when there is an empty site or list password, which is not properly handled during the call to the crypt function during authentication...
CVE-2002-0286
The GetPassword function in function.php of SiteNews 0.10 and 0.11 allows remote attackers to gain privileges and add users by providing a non-existent user name and the MD5 checksum for an empty password to adduser.php, which causes GetPassword to produce and compare a blank password for the...