CVE-2010-0551

HTTP authentication implementation in Geo++ GNCASTER 1.4.0.7 and earlier allows remote attackers to read authentication headers of other users via a large request with an incorrect authentication attempt, which includes sensitive memory in the response. NOTE: this is referred to as a "memory leak...

CVE-2010-0554

The CVE-2010-0554 entry concerns Geo++ GNCASTER, affected in versions 1.4.0.7 and earlier. The HTTP Authentication implementation uses the same nonce for all authentication attempts, enabling replay attacks that can hijack web sessions or bypass authentication. This is the root cause: nonce reuse...

CVE-2010-0551

CVE-2010-0551 affects Geo++ GNCASTER 1.4.0.7 and earlier. The HTTP authentication implementation allows remote attackers to read authentication headers from other users by sending a large request with an incorrect authentication attempt, resulting in memory disclosure (often called a memory leak)...

Ipswitch WhatsUp Gold 8.03 Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Ipswitch...

Protected Web Page Detection

The remote web server requires HTTP authentication for the following pages. Several authentication schemes are available : - Basic is the simplest, but the credentials are sent in cleartext. - NTLM provides an SSO in a Microsoft environment, but it cannot be used on both the proxy and the web...

ntop DoS

NULL pointer dereference on HTTP authentication...

CVE-2009-2422

The example code for the digest authentication functionality httpauthentication.rb in Ruby on Rails before 2.3.3 defines an authenticateorrequestwithhttpdigest block that returns nil instead of false when the user does not exist, which allows context-dependent attackers to bypass authentication f...

CVE-2009-2422

The example code for the digest authentication functionality httpauthentication.rb in Ruby on Rails before 2.3.3 defines an authenticateorrequestwithhttpdigest block that returns nil instead of false when the user does not exist, which allows context-dependent attackers to bypass authentication f...

http-auth NSE Script

Retrieves the authentication scheme and realm of a web service that requires authentication. See also: http-auth-finder.nse http-brute.nse Script Arguments http-auth.path Define the request path slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size,...

Sagem Router F@ST 2404 Remote Denial Of Service Exploit

Sagem Router F@ST 2404 Remote Denial Of Service Exploit Discovery Date : 01/09/2008 !/usr/bin/bash Author : Underz0ne Crew Underz0ne.net Zigma Severity : Medium CVE : Not assigned Example : Zigma@Underz0ne ./sagem2404.sh 192.168.1.1 Sagem Router F@ST 2404 Remote Denial Of Service Exploit By...

sagem-dos.txt

Sagem Router F@ST 2404 Remote Denial Of Service Exploit Discovery Date : 01/09/2008 !/usr/bin/bash Author : Underz0ne Crew Underz0ne.net Zigma Severity : Medium CVE : Not assigned Example : Zigma@Underz0ne ./sagem2404.sh 192.168.1.1 Sagem Router F@ST 2404 Remote Denial Of Service Exploit By...

Brute-force HTTP authentication detection page password strength-vulnerability warning-the black bar safety net

First of all, you gotta have a decent dictionary. Abroad website and Wordlist it, or write yourself a simple program to generate the dictionary. If not write a program, huh huh, then download the dictionary generating program. However, online the wordlist, or use the Online dictionary generating...

CVE-2008-1527

ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40PE9 and 3.40AGD.2 through 3.40AHQ.3, support authentication over HTTP via a hash string in the hiddenPassword field, which allows remote attackers to obtain access via a replay attack...

SA-2008-011 - Securesite - Access bypass

The Secure Site module provides functions for placing your site behind HTTP based authentication. The module contains a flaw that allows an attacker who is behind the same proxy as a logged in user, to access the site as if the attacker is the user. Versions affected Secure Site for Drupal 5.x an...

Debian Security Advisory DSA 844-1 (mod-auth-shadow)

The remote host is missing an update to mod-auth-shadow announced via advisory DSA 844-1. A vulnerability in modauthshadow, an Apache module that lets users perform HTTP authentication against /etc/shadow, has been discovered. The module runs for all locations that use the 'require group' directi...

Debian: Security Advisory (DSA-844-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-578-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2007-4692

The tabbed browsing feature in Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 through 10.4.10, allows remote attackers to spoof HTTP authentication for other sites and possibly conduct phishing attacks by causing an authentication sheet to be displayed for a tab that is not...

CVE-2007-4692

The CVE-2007-4692 issue affects Apple Safari 3 (pre-Beta Update 3.0.4) on Windows and Mac OS X 10.4–10.4.10. The vulnerability arises in the tabbed browsing feature, allowing remote attackers to spoof HTTP authentication for other sites by displaying an authentication sheet for a non-active tab, ...

Boa 0.93.15 HTTP Basic Authentication Bypass Exploit

No description provided by source. / Boa HTTP Basic Authentication Bypass Vuln: Boa/0.93.15 with Intersil Extensions Original Advisory: http://www.securityfocus.com/archive/1/479434 http://www.ikkisoft.com/stuff/SN-2007-02.txt Luca "ikki" Carettoni http://www.ikkisoft.com / ---- !/usr/bin/env...