Design/Logic Flaw

The kmxfw.sys driver in CA Host-Based Intrusion Prevention System HIPS r8, as used in CA Internet Security Suite and Personal Firewall, does not properly verify IOCTL requests, which allows local users to cause a denial of service system crash or possibly gain privileges via a crafted request...

CVE-2008-2926

The kmxfw.sys driver in CA Host-Based Intrusion Prevention System HIPS r8, as used in CA Internet Security Suite and Personal Firewall, does not properly verify IOCTL requests, which allows local users to cause a denial of service system crash or possibly gain privileges via a crafted request...

CVE-2008-3174

Unspecified vulnerability in the kmxfw.sys driver in CA Host-Based Intrusion Prevention System HIPS r8, as used in CA Internet Security Suite and Personal Firewall, allows remote attackers to cause a denial of service via unknown vectors, related to "insufficient validation."...

CVE-2008-2926

The kmxfw.sys driver in CA Host-Based Intrusion Prevention System HIPS r8, as used in CA Internet Security Suite and Personal Firewall, does not properly verify IOCTL requests, which allows local users to cause a denial of service system crash or possibly gain privileges via a crafted request...

CVE-2008-3174

Unspecified vulnerability in the kmxfw.sys driver in CA Host-Based Intrusion Prevention System HIPS r8, as used in CA Internet Security Suite and Personal Firewall, allows remote attackers to cause a denial of service via unknown vectors, related to "insufficient validation."...

Canon digital multifunction copiers FTP bounce vulnerability

Overview Some models of Canon digital multifunction copiers are vulnerable to the FTP bounce attack. Description From the Problems With The FTP PORT Command document:The FTP Bounce Attack To conform with the FTP protocol, the PORT command has the originating machine specify an arbitrary destinati...

UPnP enabled by default in multiple devices

Overview Multiple vendors ship devices with UPnP enabled by default. By convincing a user to open a malicious URL, an attacker may be able to remotely control or configure UPnP enabled devices. Description Universal Plug and Play UPnP is a collection of protocols maintained and distributed by the...

CVE-2007-6430

Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x before B.2.3.6 and C.x.x before C.1.0-beta8, when using database-based registrations "realtime" and host-based authentication, does not check the IP address when the username is correct and there is no...

DEBIAN-CVE-2007-6430

Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x before B.2.3.6 and C.x.x before C.1.0-beta8, when using database-based registrations "realtime" and host-based authentication, does not check the IP address when the username is correct and there is no...

Authentication flaw

Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x before B.2.3.6 and C.x.x before C.1.0-beta8, when using database-based registrations "realtime" and host-based authentication, does not check the IP address when the username is correct and there is no...

CVE-2007-6430

Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x before B.2.3.6 and C.x.x before C.1.0-beta8, when using database-based registrations "realtime" and host-based authentication, does not check the IP address when the username is correct and there is no...

CA Host-Based Intrusion Prevention System Server Default Credentials

The remote host is running Computer Associates' Host-Based Intrusion Prevention System CA HIPS Server, an intrusion prevention system for Windows. The remote installation of CA HIPS Server is configured to use default credentials to control access. Knowing these, an attacker can gain control of t...

CVE-2007-5472

Cross-site scripting XSS vulnerability in the Server component in CA Host-Based Intrusion Prevention System HIPS before 8.0.0.93 allows remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer...

CA Host-Based Intrusion Prevention System crossite scripting

Crossite scripting with log files...

eIQnetworks Enterprise Security Analyzer Syslog server buffer overflow

Overview The eIQnetworks Enterprise Security Analyzer Syslog server contains a buffer overflow vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Enterprise Security Analyzer eIQnetworks Enterprise Security Analyzer ESA...

Microsoft Windows Media Player Malformed PNG Remote Code Execution Vulnerability

Description Microsoft Windows Media Player is prone to a remote code-execution vulnerability. This vulnerability is related to handling of malicious PNG images. PNG images may be embedded in Windows Media Player skin files. Attackers may be able to exploit this issue by causing the application to...

CVE-2005-4310

Affected product : SSH Tectia Server

[SA18001] SSH Tectia Server Host-Based Authentication Security Issue

TITLE: SSH Tectia Server Host-Based Authentication Security Issue SECUNIA ADVISORY ID: SA18001 VERIFY ADVISORY: http://secunia.com/advisories/18001/ CRITICAL: Less critical IMPACT: Security Bypass, Privilege escalation WHERE: From remote SOFTWARE: SSH Tectia Server 5.x...

Mandrake Linux Security Advisory : pam_ldap (MDKSA-2003:088)

A bug was fixed in pamldap 162 with the pamfilter mechanism which is commonly used for host-based access restriction in environments using LDAP for authentication. Mandrake Linux 9.1 provided pamldap 161 which had this problem and as a result, systems relying on pamfilter for host-based access...

DEBIAN-CVE-2003-0734

Unknown vulnerability in the pamfilter mechanism in pamldap before version 162, when LDAP based authentication is being used, allows users to bypass host-based access restrictions and log onto the system...