CVE-2002-0850

Buffer overflow in PGP Corporate Desktop 7.1.1 allows remote attackers to execute arbitrary code via an encrypted document that has a long filename when it is decrypted...

[UNIX] WebAPP Directory Traversal and Encrypted DES Disclosure

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

WebAPP directory traversal and ability to retrieve the DES encrypted password hash

WebAPP is advertised as the internet's most feature rich, easy to run PERL based portal system. Its home site is at http://www.web-app.org/ Some features are : -Easy to Install on standard Unix servers! Windows user-supported only! -User Profiles -Message forums -Private messaging between members...

Microsoft Exchange Outlook Web Access HTTP Response Splitting Vulnerability

Description Microsoft Exchange Outlook Web Access OWA is prone to HTTP response splitting attacks. This issue could permit hostile script to be injected into client sessions, which could gain access to properties of the OWA server and Web pages hosted on the site. It is noted that the attacker mu...

SSL Tunneling

...

Mandrake Linux Security Advisory : samba (MDKSA-2002:081)

A vulnerability in samba versions 2.2.2 through 2.2.6 was discovered by the Debian samba maintainers. A bug in the length checking for encrypted password change requests from clients could be exploited using a buffer overrun attack on the smbd stack. This attack would have to crafted in such a wa...

SUSE-SA:2003:039: openssh (second release)

The remote host is missing the patch for the advisory SUSE-SA:2003:039 openssh second release. The openssh package is the most widely used implementation of the secure shell protocol family ssh. It provides a set of network connectivity tools for remote shell login, designed to substitute the...

Доступ к зашифрованным файлам Passid EasyDisk

Доступ к зашифрованным файлам Passid EasyDisk Software: Passid EasyDisk Vendor: EasyDisk Platforms: Win32 Author: durito Date: 7th July 2004 ++----------------++ | | About Product | | ++----------------++ Passid EasyDisk - программа, предназначенная для шифрования данных на флеш-картах EasyDisk...

RHEL 2.1 : stunnel (RHSA-2003:297)

Updated stunnel packages are now available. These updates address problems stemming from improper use of non-reentrant functions in signal handlers. Stunnel is a wrapper for network connections. It can be used to tunnel an unencrypted network connection over an encrypted connection encrypted usin...

[Full-Disclosure] Security hole in Confixx backup script

Hi, I found a security hole in Confixx. A malicious backup request via the webinterface might be used by any user to read files located in /root which is the default installation directory of confixx. The most interesting files you can retrieve with this attack are: /root/confixx/safe/shadow.tmp...

CVE-2003-1423

Petitforum stores the liste.txt data file under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as e-mail addresses and encrypted passwords...

CVE-2001-1412

nidump on MacOS X before 10.3 allows local users to read the encrypted passwords from the password file by specifying passwd as a command line argument...

CVE-2001-1412

nidump on MacOS X before 10.3 allows local users to read the encrypted passwords from the password file by specifying passwd as a command line argument...

CVE-2001-1412

CVE-2001-1412 affects MacOS X before 10.3 via the nidump utility. Local users can read the encrypted passwords from the password file by supplying passwd as a command line argument, indicating a failure in input handling and access control for that utility. The vulnerability’s impact is limited t...

Spaiz-Nuke/PHP-nuke multiple bugs

SQL injection during authentication, SQL injection in web-link module, SQL injection in download module, access with encrypted password...

CVE-2003-0493

Snitz Forums 3.4.03 and earlier allows attackers to gain privileges as other users by stealing and replaying the encrypted password after obtaining a valid session ID...

CVE-2003-0493

Snitz Forums 3.4.03 and earlier allows attackers to gain privileges as other users by stealing and replaying the encrypted password after obtaining a valid session ID...

CVE-2002-0788

An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System EFS, creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain...

CVE-2002-0790

clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain privileges...

PlatinumFTP.txt

Multiple vulnerabilities found in PlatinumFTPserver V1.0.7 PlatinumFTPserver C2002 BYTE/400 LTD Discovered by Dennis Rand http://www.infowarfare.dk ------------------------------------------------------------------------ SUMMARY PlatinumFTPserver simplifies management of all your Ftp clients with...