3323 matches found
Weak SSH default ocnfiguration
TCP forwarding is allowed by default, it creates security problem for anonymous SSH access for example with CVS...
CVE-2002-1189
The default configuration of Cisco Unity 2.x and 3.x does not block international operator calls in the predefined restriction tables, which could allow authenticated users to place international calls using call forwarding...
CVE-2002-0668
The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows authenticated users to modify the Call Forwarding settings and hijack calls...
CVE-2002-1189
The CVE-2002-1189 issue affects Cisco Unity 2.x and 3.x where default configuration fails to block international operator calls in predefined restriction tables, enabling authenticated users to place international calls via call forwarding. The root cause is the misconfiguration of restrictions r...
CVE-2002-0668
The CVE-2002-0668 issue affects Pingtel xpressa SIP phones (software versions 1.2.5–1.2.7.4). A web interface vulnerability allows an authenticated user to modify Call Forwarding settings, hijacking calls by redirecting them to another SIP URL or number. The root cause is exposure of administrati...
PT-2004-2559 · Openssh +1 · Openssh +1
Name of the Vulnerable Software and Affected Versions: OpenSSH affected versions not specified Description: The default configuration for OpenSSH enables AllowTcpForwarding, which could allow remote authenticated users to perform a port bounce, when configured with an anonymous access program suc...
Pegasus Mail <= 3.12c mailto: Embedded URL File Forwarding Weakness
Binary data 1302.prm...
OpenSSH Client < 2.3.0 X11 Unauthorized Remote Forwarding
Binary data 1979.prm...
CVE-2004-0468
Memory leak in Juniper JUNOS Packet Forwarding Engine PFE allows remote attackers to cause a denial of service memory exhaustion and device reboot via certain IPv6 packets...
CVE-2004-0489
Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to 1 execute arbitrary code via the ProxyCommand option or 2 conduct port forwarding via the -R option...
Juniper JUNOS Packet Forwarding Engine (PFE) IPv6 memory leak
Overview The Juniper JUNOS Packet Forwarding Engine PFE leaks memory when certain IPv6 packets are submitted for processing. If an attacker submits multiple packets to a vulnerable router running IPv6-enabled PFE, the router can be repeatedly rebooted, essentially creating a denial of service for...
LinkSys WRT54G administration page availble to WAN
Manufacturer: LinkSys a division of Cisco Product: Wireless-G Broadband Router Model: WRT54G Product Page: http://www.linksys.com/products/product.asp?grid=33&scid=35&prid=601 Firmware tested: v2.02.7 In a recent client installation I discovered that even if the remote administration function is...
CVE-2004-0489
Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to 1 execute arbitrary code via the ProxyCommand option or 2 conduct port forwarding via the -R option...
PT-2004-1607 · Apple · Apple Macos +1
Name of the Vulnerable Software and Affected Versions: Safari versions prior to 10.3.3 on Mac OS Description: The issue concerns an argument injection vulnerability in the SSH URI handler for Safari. This vulnerability allows remote attackers to execute arbitrary code via the ProxyCommand option ...
XMicro.backdoor2.txt
Backdoor in the X-Micro WLAN 11b Broadband Router ALL VERSIONS ARE AFFECTED 1.6.0.1 too Previous bugreport's bugtraq id: 10095 FCC ID: RAFXWL-11BRRG Firmware Version: 1.2.2, 1.2.2.3, 1.2.2.4, 1.6.0.0, 1.6.0.1 Remote: yes, easily expoitable Type: administration password, which always works The...
Multiple linux kernel bugs
/proc/tty/driver/serial kestroke counting information leak, multiple execve problems, multiple STP problems, UDP port spoofing, forwarding table records spoofing. ISO9660 file system buffer overflow...
SCSA021.txt
====================================================================== Security Corporation Security Advisory SCSA-021 Anonymous Mail Forwarding Vulnerabilities in vbPortal ====================================================================== PROGRAM: vbPortal HOMEPAGE: http://www.vbportal.com...
[SCSA-021] Anonymous Mail Forwarding Vulnerabilities in vbPortal
====================================================================== Security Corporation Security Advisory SCSA-021 Anonymous Mail Forwarding Vulnerabilities in vbPortal ====================================================================== PROGRAM: vbPortal HOMEPAGE: http://www.vbportal.com...
CVE-2003-0785
ipmasq before 3.5.12, in certain configurations, may forward packets to the external interface even if the packets are not associated with an established connection, which could allow remote attackers to bypass intended filtering...
DSA-389 ipmasq - insecure packet filtering rules
Bulletin has no description...