7 matches found
CVE-2026-42365
A guessable session cookie vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted series of HTTP requests can lead to an authentication bypas. An attacker can bruteforce session cookies to trigger this vulnerability...
EUVD-2001-0954
Malware in sbrugna...
Weaknesses in MIT magic cookie and XDM X Windows authorization
Overview MIT magic cookie and XDM authorization contain vulnerabilities that could allow remote attackers to connect to X displays. Description Two widely used X Window System authorization schemes have weaknesses in their sample implementations. MIT-MAGIC-COOKIE-1 On some systems built without t...
CVE-2001-0972
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie UserID 1, i.e. "0888888."...
CVE-2001-0972
The CVE-2001-0972 entry concerns Surf-Net ASP Forum prior to version 2.30, where admin cookies are derived from the UserID and are easily guessable (example: admin cookie for UserID 1 is “0888888”). This creates a remote‑attack risk: a attacker could calculate the admin cookie and gain administra...
CVE-2001-0972
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie UserID 1, i.e. "0888888."...
PT-1995-1016 · X.Org · X Windows
Name of the Vulnerable Software and Affected Versions: X Windows affected versions not specified Description: The issue allows remote attackers to execute commands due to guessable magic cookies. This can be exploited through xterm. Recommendations: At the moment, there is no information about a...