CVE-2009-2422

The example code for the digest authentication functionality httpauthentication.rb in Ruby on Rails before 2.3.3 defines an authenticateorrequestwithhttpdigest block that returns nil instead of false when the user does not exist, which allows context-dependent attackers to bypass authentication f...

http-auth NSE Script

Retrieves the authentication scheme and realm of a web service that requires authentication. See also: http-auth-finder.nse http-brute.nse Script Arguments http-auth.path Define the request path slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size,...

Sagem Router F@ST 2404 Remote Denial Of Service Exploit

Sagem Router F@ST 2404 Remote Denial Of Service Exploit Discovery Date : 01/09/2008 !/usr/bin/bash Author : Underz0ne Crew Underz0ne.net Zigma Severity : Medium CVE : Not assigned Example : Zigma@Underz0ne ./sagem2404.sh 192.168.1.1 Sagem Router F@ST 2404 Remote Denial Of Service Exploit By...

sagem-dos.txt

Sagem Router F@ST 2404 Remote Denial Of Service Exploit Discovery Date : 01/09/2008 !/usr/bin/bash Author : Underz0ne Crew Underz0ne.net Zigma Severity : Medium CVE : Not assigned Example : Zigma@Underz0ne ./sagem2404.sh 192.168.1.1 Sagem Router F@ST 2404 Remote Denial Of Service Exploit By...

Brute-force HTTP authentication detection page password strength-vulnerability warning-the black bar safety net

First of all, you gotta have a decent dictionary. Abroad website and Wordlist it, or write yourself a simple program to generate the dictionary. If not write a program, huh huh, then download the dictionary generating program. However, online the wordlist, or use the Online dictionary generating...

CVE-2008-1527

ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40PE9 and 3.40AGD.2 through 3.40AHQ.3, support authentication over HTTP via a hash string in the hiddenPassword field, which allows remote attackers to obtain access via a replay attack...

SA-2008-011 - Securesite - Access bypass

The Secure Site module provides functions for placing your site behind HTTP based authentication. The module contains a flaw that allows an attacker who is behind the same proxy as a logged in user, to access the site as if the attacker is the user. Versions affected Secure Site for Drupal 5.x an...

Debian: Security Advisory (DSA-844-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 844-1 (mod-auth-shadow)

The remote host is missing an update to mod-auth-shadow announced via advisory DSA 844-1. A vulnerability in modauthshadow, an Apache module that lets users perform HTTP authentication against /etc/shadow, has been discovered. The module runs for all locations that use the 'require group' directi...

Debian: Security Advisory (DSA-578-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2007-4692

The tabbed browsing feature in Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 through 10.4.10, allows remote attackers to spoof HTTP authentication for other sites and possibly conduct phishing attacks by causing an authentication sheet to be displayed for a tab that is not...

CVE-2007-4692

The CVE-2007-4692 issue affects Apple Safari 3 (pre-Beta Update 3.0.4) on Windows and Mac OS X 10.4–10.4.10. The vulnerability arises in the tabbed browsing feature, allowing remote attackers to spoof HTTP authentication for other sites by displaying an authentication sheet for a non-active tab, ...

Boa 0.93.15 HTTP Basic Authentication Bypass Exploit

No description provided by source. / Boa HTTP Basic Authentication Bypass Vuln: Boa/0.93.15 with Intersil Extensions Original Advisory: http://www.securityfocus.com/archive/1/479434 http://www.ikkisoft.com/stuff/SN-2007-02.txt Luca "ikki" Carettoni http://www.ikkisoft.com / ---- !/usr/bin/env...

The Dawn of Time MUD game format string vulnerability

Buffer overflow in HTTP authentication...

Opera's HTTP authentication cuts off long server names at the end

Opera's HTTP authentication dialog is displayed when the user enters a Web pagethat requires a login name and a password. To inform the user which server itwas that asked for login credentials, the dialog displays the server name.The user has to see the entire server name. A truncated name can be...

opera -- multiple vulnerabilities

Opera Software ASA reports of multiple security fixes in Opera, including an arbitrary code execute vulnerability: Opera for Linux, FreeBSD, and Solaris has a flaw in the createPattern function that leaves old data that was in the memory before Opera allocated it in the new pattern. The pattern c...

Novell Groupwise WebAccess buffer overflow

Stack buffer overflow stack overrun during TCP/7205 TCP/7211 HTTP basic authentication on base64 decoding...

FreeBSD : sql-ledger -- security bypass vulnerability (8e02441d-d39c-11db-a6da-0003476f14d3)

Chris Travers reports : George Theall of Tenable Security notified the LedgerSMB core team today of an authentication bypass vulnerability allowing full access to the administrator interface of LedgerSMB 1.1 and SQL-Ledger 2.x. The problem is caused by the password checking routine failing to...

Security bypass vulnerability in LedgerSMB and SQL-Ledger (fixes released today)

Hi all; George Theall of Tenable Security notified the LedgerSMB core team today of an authentication bypass vulnerability allowing full access to the administrator interface of LedgerSMB 1.1 and SQL-Ledger 2.x. The problem is caused by the password checking routine failing to enforce a password...

sql-ledger -- security bypass vulnerability

Chris Travers reports: George Theall of Tenable Security notified the LedgerSMB core team today of an authentication bypass vulnerability allowing full access to the administrator interface of LedgerSMB 1.1 and SQL-Ledger 2.x. The problem is caused by the password checking routine failing to...