Lucene search
K

3323 matches found

securityvulns
securityvulns
added 2004/09/03 12:0 a.m.28 views

Weak SSH default ocnfiguration

TCP forwarding is allowed by default, it creates security problem for anonymous SSH access for example with CVS...

2.4AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.20 views

CVE-2002-1189

The default configuration of Cisco Unity 2.x and 3.x does not block international operator calls in the predefined restriction tables, which could allow authenticated users to place international calls using call forwarding...

6.4AI score0.00354EPSS
Exploits0References3
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.21 views

CVE-2002-0668

The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows authenticated users to modify the Call Forwarding settings and hijack calls...

6.4AI score0.01326EPSS
Exploits0References4
CVE
CVE
added 2004/09/01 4:0 a.m.47 views

CVE-2002-1189

The CVE-2002-1189 issue affects Cisco Unity 2.x and 3.x where default configuration fails to block international operator calls in predefined restriction tables, enabling authenticated users to place international calls via call forwarding. The root cause is the misconfiguration of restrictions r...

4.6CVSS6.8AI score0.00354EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2004/09/01 4:0 a.m.52 views

CVE-2002-0668

The CVE-2002-0668 issue affects Pingtel xpressa SIP phones (software versions 1.2.5–1.2.7.4). A web interface vulnerability allows an authenticated user to modify Call Forwarding settings, hijacking calls by redirecting them to another SIP URL or number. The root cause is exposure of administrati...

7.5CVSS6.4AI score0.01326EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2004/08/31 12:0 a.m.18 views

PT-2004-2559 · Openssh +1 · Openssh +1

Name of the Vulnerable Software and Affected Versions: OpenSSH affected versions not specified Description: The default configuration for OpenSSH enables AllowTcpForwarding, which could allow remote authenticated users to perform a port bounce, when configured with an anonymous access program suc...

10CVSS7.5AI score0.99506EPSS
Exploits207References339
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.16 views

Pegasus Mail <= 3.12c mailto: Embedded URL File Forwarding Weakness

Binary data 1302.prm...

5CVSS7.3AI score0.07653EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.21 views

OpenSSH Client < 2.3.0 X11 Unauthorized Remote Forwarding

Binary data 1979.prm...

7.5CVSS7.3AI score0.01849EPSS
Exploits0References1
Cvelist
Cvelist
added 2004/07/08 4:0 a.m.27 views

CVE-2004-0468

Memory leak in Juniper JUNOS Packet Forwarding Engine PFE allows remote attackers to cause a denial of service memory exhaustion and device reboot via certain IPv6 packets...

6.6AI score0.03193EPSS
Exploits0References4
NVD
NVD
added 2004/07/07 4:0 a.m.24 views

CVE-2004-0489

Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to 1 execute arbitrary code via the ProxyCommand option or 2 conduct port forwarding via the -R option...

7.6CVSS7.8AI score0.06678EPSS
Exploits1References3
CERT
CERT
added 2004/06/30 12:0 a.m.33 views

Juniper JUNOS Packet Forwarding Engine (PFE) IPv6 memory leak

Overview The Juniper JUNOS Packet Forwarding Engine PFE leaks memory when certain IPv6 packets are submitted for processing. If an attacker submits multiple packets to a vulnerable router running IPv6-enabled PFE, the router can be repeatedly rebooted, essentially creating a denial of service for...

5CVSS6.5AI score0.03193EPSS
Exploits0References3
securityvulns
securityvulns
added 2004/06/01 12:0 a.m.29 views

LinkSys WRT54G administration page availble to WAN

Manufacturer: LinkSys a division of Cisco Product: Wireless-G Broadband Router Model: WRT54G Product Page: http://www.linksys.com/products/product.asp?grid=33&scid=35&prid=601 Firmware tested: v2.02.7 In a recent client installation I discovered that even if the remote administration function is...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2004/05/28 4:0 a.m.24 views

CVE-2004-0489

Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to 1 execute arbitrary code via the ProxyCommand option or 2 conduct port forwarding via the -R option...

7.8AI score0.06678EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2004/05/28 12:0 a.m.4 views

PT-2004-1607 · Apple · Apple Macos +1

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 10.3.3 on Mac OS Description: The issue concerns an argument injection vulnerability in the SSH URI handler for Safari. This vulnerability allows remote attackers to execute arbitrary code via the ProxyCommand option ...

7.6CVSS8AI score0.06678EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2004/04/16 12:0 a.m.27 views

XMicro.backdoor2.txt

Backdoor in the X-Micro WLAN 11b Broadband Router ALL VERSIONS ARE AFFECTED 1.6.0.1 too Previous bugreport's bugtraq id: 10095 FCC ID: RAFXWL-11BRRG Firmware Version: 1.2.2, 1.2.2.3, 1.2.2.4, 1.6.0.0, 1.6.0.1 Remote: yes, easily expoitable Type: administration password, which always works The...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/04/14 12:0 a.m.36 views

Multiple linux kernel bugs

/proc/tty/driver/serial kestroke counting information leak, multiple execve problems, multiple STP problems, UDP port spoofing, forwarding table records spoofing. ISO9660 file system buffer overflow...

1.6AI score
Exploits0References4Affected Software1
Packet Storm
Packet Storm
added 2003/11/25 12:0 a.m.35 views

SCSA021.txt

====================================================================== Security Corporation Security Advisory SCSA-021 Anonymous Mail Forwarding Vulnerabilities in vbPortal ====================================================================== PROGRAM: vbPortal HOMEPAGE: http://www.vbportal.com...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/11/22 12:0 a.m.58 views

[SCSA-021] Anonymous Mail Forwarding Vulnerabilities in vbPortal

====================================================================== Security Corporation Security Advisory SCSA-021 Anonymous Mail Forwarding Vulnerabilities in vbPortal ====================================================================== PROGRAM: vbPortal HOMEPAGE: http://www.vbportal.com...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2003/09/23 4:0 a.m.18 views

CVE-2003-0785

ipmasq before 3.5.12, in certain configurations, may forward packets to the external interface even if the packets are not associated with an established connection, which could allow remote attackers to bypass intended filtering...

6.5AI score0.01487EPSS
Exploits0References1
OSV
OSV
added 2003/09/20 12:0 a.m.18 views

DSA-389 ipmasq - insecure packet filtering rules

Bulletin has no description...

7.5CVSS6.2AI score0.01487EPSS
Exploits0
Rows per page
Query Builder