Lucene search
K

79 matches found

myhack58
myhack58
added 2016/04/12 12:0 a.m.34 views

CVE-2 0 1 6-1 4 9 4 (python – rsa)vulnerability details-vulnerability warning-the black bar safety net

0×0 1 Overview CVE-2 0 1 6-1 4 9 4 vulnerability is about the Python-rsa signature forgery. In certain cases, can be forged a python rsa library to generate the signature information. But the premise needs an RSA public key exponent value e is small, the following are to e=3 discussion. A digital...

0.2AI score
Exploits0
myhack58
myhack58
added 2016/01/15 12:0 a.m.127 views

Python-rsa signature forgery-vulnerability warning-the black bar safety net

! By looking at the python-rsa source code, we found that it is the presence of a vulnerability is based on Bleichenbacher'0 6 attack research out for the RSA signature forgery of a simple variant, is due to the public key index is too low. The vulnerability can lead to arbitrary information to...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2015/09/09 12:0 a.m.41 views

ColdFusion 9-10 - Credential Disclosure Exploit

ColdFusion...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2015/04/13 10:47 p.m.16 views

Forpix - Software for detecting affine image files

forpix is a forensic program for identifying similar images that are no longer identical due to image manipulation. Hereinafter I will describe the technical background for the basic understanding of the need for such a program and how it works. From image files or files in general you can create...

7.2AI score
Exploits0
myhack58
myhack58
added 2015/04/01 12:0 a.m.239 views

JBoss JMXInvokerServlet JMXInvoker 0.3 remote command execution vulnerability-vulnerability warning-the black bar safety net

/ JBoss JMXInvokerServlet Remote Command Execution JMXInvoker.java v0. 3 - Luca Carettoni @ikki This code exploits a common misconfiguration in the JBoss Application Server 4. x, 5. x, .... Whenever the JMX Invoker is exposed with the default configuration, a malicious "MarshalledInvocation"...

0.2AI score
Exploits0
OSV
OSV
added 2014/05/29 2:19 p.m.1 views

DEBIAN-CVE-2014-0246

SOSreport stores the md5 hash of the GRUB bootloader password in an archive, which allows local users to obtain sensitive information by reading the archive...

4.3CVSS6.4AI score0.01321EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2014/05/19 2:55 p.m.29 views

CVE-2013-7040

Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values without restricting the ability to trigger hash collisions predictably and makes it easier for context-dependent attackers to cause a denial of service CPU consumptio...

4.3CVSS6.8AI score0.03255EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/11/18 12:0 a.m.38 views

Ubuntu Update for linux USN-2017-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN20171.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for linux USN-2017-1 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

4CVSS6.5AI score0.00858EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2013/09/12 12:0 a.m.38 views

Ubuntu Update for linux-lts-quantal USN-1947-1

Check for the Version of linux-lts-quantal OpenVAS Vulnerability Test $Id: gbubuntuUSN19471.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for linux-lts-quantal USN-1947-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This...

6.9CVSS0.4AI score0.01013EPSS
Exploits7References2
Cvelist
Cvelist
added 2013/02/18 11:0 a.m.35 views

CVE-2012-5375

The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service prevention of file creation by leveraging the ability to write to a directory important to the victim, and creating a file with a crafted name that is associated with ...

5.7AI score0.00858EPSS
Exploits1References10
UbuntuCve
UbuntuCve
added 2013/02/18 12:0 a.m.29 views

CVE-2012-5375

The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service prevention of file creation by leveraging the ability to write to a directory important to the victim, and creating a file with a crafted name that is associated with ...

4CVSS5.9AI score0.00858EPSS
Exploits1References9
OSV
OSV
added 2013/02/18 12:0 a.m.5 views

UBUNTU-CVE-2012-5375

The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service prevention of file creation by leveraging the ability to write to a directory important to the victim, and creating a file with a crafted name that is associated with ...

4CVSS5.8AI score0.00858EPSS
Exploits1References10
The Hacker News
The Hacker News
added 2012/02/28 7:38 a.m.11 views

Irongeek's Shared hosting MD5 Change Detection Script

Irongeek's Shared hosting MD5 Change Detection Script Adrian Crenshaw aka Irongeek just release another great tool for web admins that will monitor the files on a website, and report any changed via email. Actually "irongeek.com" was hacked few days back which is hosted on a shared hosting. There...

7.3AI score
Exploits0
NVD
NVD
added 2011/12/30 1:55 a.m.24 views

CVE-2011-4838

JRuby before 1.6.5.1 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table...

5CVSS6.1AI score0.0436EPSS
Exploits1References10
Prion
Prion
added 2009/09/11 4:30 p.m.29 views

Sql injection

directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...

7.5CVSS7.5AI score0.0406EPSS
Exploits1References3Affected Software1
RubySec
RubySec
added 2008/08/12 12:0 a.m.19 views

Spree Hardcoded config.action_controller_session Hash Value Cryptographic Protection Weakness

Spree contains a hardcoded flaw related to the config.actioncontrollersession hash value. This may allow an attacker to more easily bypass cryptographic protection...

5CVSS2.2AI score0.01244EPSS
Exploits0References1Affected Software1
myhack58
myhack58
added 2008/03/18 12:0 a.m.474 views

Crack Oracle Password: [Oracle password]-vulnerability warning-the black bar safety net

Note: the station authorization starting, reprint please indicate the source Author:Mickey To connect to a remote Oracle database, need to know the SID, user name, password, and of course the most important IP address. SID If is administrator to modify, you can use sidguess to be cracked, the spe...

Exploits0
RedHat Linux
RedHat Linux
added 2004/05/12 3:21 a.m.4 views

security flaw

KAME IKE daemon racoon does not properly handle hash values, which allows remote attackers to delete certificates via 1 a certain delete message that is not properly handled in isakmp.c or isakmpinf.c, or 2 a certain INITIAL-CONTACT message that is not properly handled in isakmpinf.c...

5CVSS5.9AI score0.06664EPSS
Exploits0References4
CVE
CVE
added 1999/09/29 4:0 a.m.80 views

CVE-1999-0366

CVE-1999-0366 concerns Windows NT 4.0 SP4. Affected component: network shares authentication; root cause: null NT hash value enables access with a blank password. Impact stated as PARTIAL confidentiality, integrity, and availability. Exploitation details are not provided in the connected document...

7.5CVSS7AI score0.03686EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder