Доступ без пароля в Novell Groupwise (unauthorized access)

Можно подключиться через LDAP с пустым паролем...

Многочисленные дырки в Avaya Argent Office (DoS, weak password, empty SNMP password, tftp file spoofing)

Многочисленные дырки...

DoS против pine (empty message body)

Сообщение с пустым телом и заголовками приводит к краху программы...

CVE-2001-0566

Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP packet sent to port 161 SNMP when SNMP is disabled...

Qpopper 4.0.3 **** Fixes Buffer Overflow ****

Qpopper 4.0.3 is available at ftp://ftp.qualcomm.com/eudora/servers/unix/popper/. 4.0.3 FIXES A BUFFER OVERFLOW PRESENT IN ALL VERSIONS OF 4.0 -- PLEASE UPGRADE IMMEDIATELY Changes from 4.0.2 to 4.0.3: ---------------------------- 1. Don't call SSLshutdown unless we tried to negotiate an SSL...

Cisco Catalyst 2900XL crashes with empty UDP packet when SNMP is disabled.

Hi It's possible to crash Cisco Catalyst 2900XL with a empty UDP packet to port 161 when SNMP is disabled. Other switches also? The crash only occurs when the switch is booted with SNMP disabled. Seems that SNMP is listening, even if SNMP is disabled.. ? I have only tested this with Software...

Cisco Catalyst 2900 12.0 - 5.2XU SNMP Empty UDP Packet Denial of Service

Cisco Catalyst 2900 12.0 - 5.2XU SNMP Empty UDP Packet Denial of Service source: https://www.securityfocus.com/bid/2689/info The Catalyst series switch is a scalable, high performance layers 2 and 3 switch manufactured by Cisco Systems. The Catalyst series ranges in size, and is designed for use ...

Cisco Catalyst 2900 12.0 - '5.2'XU SNMP Empty UDP Packet Denial of Service

source: https://www.securityfocus.com/bid/2689/info The Catalyst series switch is a scalable, high performance layers 2 and 3 switch manufactured by Cisco Systems. The Catalyst series ranges in size, and is designed for use in organizations sized from small business to large enterprise. A problem...

Microsoft Windows NT 4.02000 - TCP Stack Denial of Service (2)

Microsoft Windows NT 4.02000 - TCP Stack Denial of Service 2 // source: https://www.securityfocus.com/bid/3967/info An issue exists in Windows which could cause the TCP stack to consume all available system memory. This is achieved if a user sends numerous empty TCP packets to a host on port 139...

Soho Firewall CVE-2000-1098 Denial-Of-Service Vulnerability

The web server for the SonicWALL SOHO firewall allows remote attackers to cause a denial of service via an empty GET or POST request. CVE: CVE-2000-1098 Last updated: Sept. 5, 2008, 8:22 p.m...

Дырка в мастере "Configure Your Server" Windows 2000

Создается пустой пароль Restore mode...

CVE-2000-0962

The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service...

DoS против Exchange

Пустой разделитель между MIME-частями Content-Type: boundary в письме приводит к отказу сервера Exchange...

DoS против OpenBSD

Пустой пакет протоколов AH и ESP вызывает ошибку в ядре при включенной поддержке IPSec...

Дырки в CiscoSecure ACS

Многочисленные ошибки с переполнением буфера,кроме того опльзователь с пустым LDAP-паролем могу получить ena-доступ...

Дырка в VPNах Rapid Stream

Существует учетная запись с пустым паролем, не позволяющая удаленного подключения, но позволяющая выполнение команд по rsh...

Re: Re[4]: mailbox parsing problem in imap-4.7c

3APA3A [email protected] wrote: Hello Mark, Thursday, August 10, 2000, 9:14:25 PM, you wrote: MC This is not a sendmail issue, since sendmail is an MTA, not an MDA. Sendmail MC calls MDA programs. Sendmail works splendidly for us. sendmail contains mail.local. mail.local is MDA. At least BS...

Дырка в Tumbleweed Worldsecure (MMS)

При установке создается учетная запись пользователя с пустым паролем и без ограничения прав...

DoS (пустое имя NetBIOS) против Windows

Windows 95/98 умирает, получая пустое имя партнера в сеансе NetBIOS...

CVE-1999-0506

CVE-1999-0506 affects Windows NT domain accounts with a default, null, blank, or missing password. The included sources confirm the issue as a weak-password scenario enabling logins when no proper credentials are configured, with related references noting blank administrator passwords and weak cr...