3078 matches found
PT-2009-1033 · Nss Ldap · Nss Ldap
Name of the Vulnerable Software and Affected Versions: nss-ldapd versions prior to 0.6.8 Description: The issue is related to errors in privilege management, allowing a local user to obtain the cleartext password for the LDAP server. This can be achieved by reading the bindpw field from the...
CVE-2009-0250
Ryneezy phoSheezy 0.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the file containing the administrator's password hash via a direct request for config/password...
WowWee Rovio Insufficient Access Controls
SUMMARY WowWee Rovio - Insufficient Access Controls - Covert Audio/Video Snooping Possible OVERVIEW Rovio from WowWee does not adequately secure all accessible URLs or media streams, enabling an unauthorized user with network access to the robotic webcam platform the ability to listen to and view...
Ocean12 Calendar Manager Gold Database Disclosure Vulnerability
No description provided by source. --------------------------------------------------------- Portal Name: Ocean12 Calendar Manager Gold Version: 2.04 Vendor : http://ocean12tech.com/products/o12calgold Dork: Maintained with the Ocean12 Calendar Manager Gold v2.04 Author : PouyaServer ,...
JBossEAP allows download of non-EJB class files
The default configuration of the JBossAs component in Red Hat JBoss Enterprise Application Platform aka JBossEAP or EAP, possibly 4.2 before CP04 and 4.3 before CP02, when a production environment is enabled, sets the DownloadServerClasses property to true, which allows remote attackers to obtain...
WirelessIP5000 has multiple vulnerabilities
Overview WirelessIP5000, a wireless IP phone from Hitachi Cable, contains multiple vulnerabilities; - Illegal access using the port TCP3390 - SNMP access using an arbitrary community name - Access to the HTTP server by an unauthorized user in the factory default configuration - The HTTP server...
PT-2008-3126 · Mysql Server · Phpmyadmin
Name of the Vulnerable Software and Affected Versions: phpMyAdmin versions prior to 2.11.5.1 Description: The issue allows local users to obtain sensitive information, including the MySQL username, password, and the Blowfish secret key, which are stored in cleartext in a Session file under /tmp...
boastMachine <=3.1 SQL Injection Vulnerbility
...:::::boastMachine =3.1 SQL Injection Vulnerbility ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in the...
HP Info Center ActiveX code execution
Few unsafe methods are explosed...
SkyPortal vRC6 Multiple Remote Vulnerabilities
No description provided by source. WwW.BugReport.ir BugReport Security Research & Penetration Testing Group Title: Sky Portal Multiple SQL Injection Vulnerabilities Vendor: http://skyportal.net Exploitation: Remote with browser Fix Available: Patched In Last Version In Vendor Leaders : Shahin...
DEBIAN-CVE-2007-4755
Alien Arena 2007 6.10 and earlier allows remote attackers to cause a denial of service client disconnect by sending a clientconnect command in a forged packet from the server to a client. NOTE: client IP addresses are available via product-specific queries...
VMware Inc 6.0.0 CreateProcess Remote Code Execution Exploit
No description provided by source. :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: VmWare Inc version 6.0.0 CreateProcess & CreateProcessEx Remode Code Execution Exploit ====================================================================================== Interna...
JSP vulnerabilities large-vulnerability warning-the black bar safety net
Overview: The server vulnerability is a security Origin, a hacker on the site of the attack is also mostly from the Find each other's vulnerabilities. So only understand its own vulnerability, the site managers to take appropriate measures to prevent foreign attacks. The following describes some ...
McAfee Subscription Manager Stack Buffer Overflow
This module exploits a flaw in the McAfee Subscription Manager ActiveX control. Due to an unsafe use of vsprintf, it is possible to trigger a stack buffer overflow by passing a large string to one of the COM-exposed routines, such as IsAppExpired. This vulnerability was discovered by Karl Lynn of...
[Full-disclosure] WebEOC Vuln - more info
Hi Guys, Doing a pen test I have come up with a WebEOC server. There are a few vulns listed at: http://secunia.com/advisories/16075/ specifically I am interested in : "6 Sensitive information is exposed in URIs, stored in publicly accessible configuration files, and in the HTML code returned to...
Microsoft SQL (MSSQL) Server Detection (TCP/IP Listener)
Microsoft SQL MSSQL Server detection based on an exposed TCP/IP listener. SPDX-FileCopyrightText: 2005 Nicolas Gregoire Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows LSASS Connection Validation Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege escalation vulnerability through LSASS Local Security Authority Subsystem Service. The vulnerability appears to be due to an error in the implementation of an enhanced access control feature. Attackers can exploit this vulnerability to...
security flaw
CUPS 1.1.20 and earlier records authentication information for a device URI in the errorlog file, which allows local users to obtain user names and passwords...
thttpd 2.0.7 Directory Traversal (Windows)
The remote web server fails to limit requests to items within the document directory. An attacker may exploit this flaw to read arbitrary files on the remote system with the privileges of the http process. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid14229;...
Sad-Raven GuestBook
Product : Sad-Raven GuestBook Version : 1.1 WebSite : http://www.sad-raven.ru Problem : Admin access rus Description: ------------ Если посмотреть файл admin.php, можно увидеть следующие строки: admin.php ========= ... if fileexists"passwd.dat" && $QUERYSTRING != "": require "passwd.dat";...