3 matches found
The vulnerability of the CURL command-line utility that implements the HSTS (HTTP Strict Transport Security) mechanism allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the HSTS HTTP Strict Transport Security mechanism implemented in the cURL command utility is related to errors in the use of host names. Exploiting this vulnerability can allow a attacker to intercept traffic and gain unauthorized access to protected information...
Moxa AWK-3131A Authentication Bypass Vulnerability
Moxa AWK-3131A is a wireless access device from Moxa. A security vulnerability exists in the handling of host names in the Moxa AWK-3131A using firmware version 1.13. An attacker can exploit this vulnerability to bypass authentication by sending an authenticated SNMP request...
USN-3387-1 git vulnerability
Brian Neel, Joern Schneeweisz, and Jeff King discovered that Git did not properly handle host names in 'ssh://' URLs. A remote attacker could use this to construct a git repository that when accessed could run arbitrary code with the privileges of the user...