Lucene search
K

819 matches found

nvd
nvd
added 2001/01/01 5:0 a.m.13 views

CVE-2001-0161

Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks...

5CVSS6.8AI score0.00798EPSS
Exploits1References1
exploitdb
exploitdb
added 2000/12/14 12:0 a.m.38 views

Secure Computing e.iD Authenticator for Palm 2.0 - PIN Brute Force

source: https://www.securityfocus.com/bid/2105/info Summary: An attacker that obtains access to the "sceiddb.pdb" file, part of Secure Computing's e.iD Authenticator for Palm, can determine the user's PIN. Problem Description: Secure Computing's SafeWord is a system of authentication services tha...

7.4AI score
Exploits0
cert
cert
added 2000/11/03 12:0 a.m.38 views

Passwords sent via SSH encrypted with RC4 can be easily cracked

Overview Passwords sent using SSH with RC4 encryption can be easily cracked by an attacker who is able to capture and replay the session. This problem occurs for three reasons: SSH sessions can be replayed, the RC4 encryption algorithm has some specific weaknesses, and the SSH daemon provides too...

6.9AI score
Exploits0References2
securityvulns
securityvulns
added 2000/08/25 12:0 a.m.55 views

Advisory CA-2000-18

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CERT Advisory CA-2000-18 PGP May Encrypt Data With Unauthorized ADKs Original release date: August 24, 2000 Last revised: -- Source: CERT/CC A complete revision history is at the end of this file. Systems Affected PGP versions 5.5.x through 6.5.3,...

6.2AI score
Exploits0
cvelist
cvelist
added 2000/07/12 4:0 a.m.24 views

CVE-2000-0487

The Protected Store in Windows 2000 does not properly select the strongest encryption when available, which causes it to use a default of 40-bit encryption instead of 56-bit DES encryption, aka the "Protected Store Key Length" vulnerability...

6.5AI score0.02479EPSS
Exploits1References2
securityvulns
securityvulns
added 2000/06/05 12:0 a.m.34 views

NT admin password change algorithms expose user plaintext passwords

eye-catching subject line, huh? well, under specific circumstances, unfortunately, it's true. as it's now early morning, i shall be reasonably brief. conditions required if using NTLMv1 LmCompatibilibyLevel=0: - NT admin runs USRMGR.EXE or SRVMGR.EXE and either adds a new user, workstation or...

7.2AI score
Exploits0
nvd
nvd
added 2000/06/01 4:0 a.m.16 views

CVE-2000-0487

The Protected Store in Windows 2000 does not properly select the strongest encryption when available, which causes it to use a default of 40-bit encryption instead of 56-bit DES encryption, aka the "Protected Store Key Length" vulnerability...

3.6CVSS6.5AI score0.02479EPSS
Exploits1References2
securityvulns
securityvulns
added 2000/05/12 12:0 a.m.55 views

ISS SAVANT Advisory 00/26

Internet Security Systems SAVANT Windows 2000 Advisory No: 00/26 Dated: 10 May 2000 Platforms Affected: Windows 2000 Server Windows 2000 Professional Subject: Default configuration of SYSKEY permits compromise of Encrypting File System Summary: The Encrypting File System EFS permits files and...

6.8AI score
Exploits0
nvd
nvd
added 2000/04/10 4:0 a.m.16 views

CVE-2000-0275

CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN...

2.1CVSS6.5AI score0.00855EPSS
Exploits1References3
securityvulns
securityvulns
added 2000/04/05 12:0 a.m.32 views

Newsletter 35

RSA Web site defaced Amazon.com, eBay & CNN all targeted with DDoS President Clinton convenes meeting on internet security Infosec professionals like yourself can't afford to miss out on late breaking news, in-depth analysis, product reviews and more in each issue of Information Security Magazine...

7.3AI score
Exploits0
exploitdb
exploitdb
added 1999/12/19 12:0 a.m.33 views

Ipswitch IMail Server 5.0/5.0.5/5.0.6/5.0.7/5.0.8/6.0 - Weak Password Encryption

// source: https://www.securityfocus.com/bid/880/info IMail keeps the encrypted passwords for email accounts in a registry key, HKLM\SOFTWARE\Ipswitch\Imail\Domains\DomainName\Users\UserName, in a string value called "Password". The encryption scheme used is weak and has been broken. The followin...

7.4AI score
Exploits0
packetstorm
packetstorm
added 1999/08/17 12:0 a.m.41 views

afio.pgp.txt

Date: Fri, 11 Jun 1999 16:55:30 -0000 From: [email protected] To: [email protected] Subject: fwd SECURITY: afio: security hole in 'afio -P pgp' encrypted archives Hello, Just found it on comp.os.linux.announce. Sorry if it was already on the list. cezar -----BEGIN PGP SIGNED MESSAGE----- I belie...

7.4AI score
Exploits0
packetstorm
packetstorm
added 1999/08/17 12:0 a.m.21 views

lydia.passwd.txt

Yet Another password storing problem was: Re: Possible Netscape Yiorgos Adamopoulos [email protected] Fri, 19 Feb 1999 16:58:13 +0200 On Tue, Feb 16, 1999 at 01:02:08PM -0600, HD Moore wrote: The password is still in the registry after you close netscape, Now that we are talking about...

7.4AI score
Exploits0
exploitdb
exploitdb
added 1999/07/29 12:0 a.m.27 views

Ogopogo Autothenticate 1.1.5 - Weak Password Encryption

source: https://www.securityfocus.com/bid/552/info Autothenticate is an extension for MacOS that remembers usernames and passwords from visited websites, and atomatically enters them when the site is visited again. It can be configured to store the username and password, the username only, or...

7.4AI score
Exploits0
exploitdb
exploitdb
added 1999/04/09 12:0 a.m.37 views

Novell Netware 4.1/4.11 - SP5B Remote.NLM Weak Encryption

source: https://www.securityfocus.com/bid/482/info The encrypted passwords for Remote.NLM are remotely accessible to anyone with the ability to view SYS:System\LDRemote.NCF. The password encryption algorithm for Remote.NLM has been broken and can be decrypted with pencil and paper. The password...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1999/04/09 12:0 a.m.33 views

Novell Netware 4.14.11 - SP5B Remote.NLM Weak Encryption

Novell Netware 4.14.11 - SP5B Remote.NLM Weak Encryption source: https://www.securityfocus.com/bid/482/info The encrypted passwords for Remote.NLM are remotely accessible to anyone with the ability to view SYS:System\LDRemote.NCF. The password encryption algorithm for Remote.NLM has been broken a...

0.1AI score
Exploits0
nvd
nvd
added 1998/06/29 4:0 a.m.28 views

CVE-1999-1556

Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account and stores it in an accessible portion of the registry, which could allow local users to gain privileges by reading and decrypting the CmdExecAccount value...

7.2CVSS0.01179EPSS
Exploits0References3
exploitdb
exploitdb
added 1998/05/19 12:0 a.m.41 views

Allaire ColdFusion Server 4.0.1 - 'CFCRYPT.EXE' Decrypt Pages

/ source: https://www.securityfocus.com/bid/275/info A vulnerability in ColdFusion allows pages encrypted with the CFCRYPT.EXE utility to be decrypted. ColdFusion supports the ability to "encrypt" the CFML templates in an application or component, using the CFCRYPT.EXE utility, so they can be...

7.4AI score
Exploits0
nvd
nvd
added 1995/03/03 5:0 a.m.21 views

CVE-1999-1098

Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing...

5CVSS0.01363EPSS
Exploits0References4
Rows per page
Query Builder