CVE-2020-26526

An issue was discovered in Damstra Smart Asset 2020.7. It is possible to enumerate valid usernames on the login page. The application sends a different server response when the username is invalid than when the username is valid "Unable to find an APIDomain" versus "Wrong email or password"...

Debian DSA-967-1 : elog - several vulnerabilities

Several security problems have been found in elog, an electronic logbook to manage notes. The Common Vulnerabilities and Exposures Project identifies the following problems : - CVE-2005-4439 'GroundZero Security' discovered that elog insufficiently checks the size of a buffer used for processing...

CVE-2005-4624

The mjoin function in channel.c for PTnet ircd 1.5 and 1.6 allows remote attackers to cause a denial of service memory exhaustion that triggers a daemon restart via a large number of requests to join a "charmed channel" such as PTnet, PTnoticias and .log, which causes ircd to open the channel eve...

CVE-2004-1739

Bird Chat 1.61 allows remote attackers to cause a denial of service crash via invalid users...

CVE-2002-1849

ParaChat Server 4.0 does not log users off if the browser's back button is used, which allows remote attackers to cause a denial of service by repeatedly logging into a chat room, hitting the back button, then logging into the same chat room as a different user, which fills the chat room with...

Firewall-1 usernames detection

PKI aggressive mode replies are different for existing and non-existing usernames...