16 matches found
SUSE-SU-2026:2229-1 Security update for hplip
This update for hplip fixes the following issues Security issues: - CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation bsc1266031. - CVE-2026-8631: escalation of privileges and/or arbitrary code execution via ...
EUVD-2014-4668
Malware in sbrugna...
EUVD-2005-2147
Malware in sbrugna...
CVE-2023-37426 Shared SSH Static Host Keys in EdgeConnect SD-WAN Orchestrator
EdgeConnect SD-WAN Orchestrator instances prior to the versions resolved in this advisory were found to have shared static SSH host keys for all installations. This vulnerability could allow an attacker to spoof the SSH host signature and thereby masquerade as a legitimate Orchestrator host...
CVE-2022-3347
DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...
Apple iOS and Apple iPadOS Data Forgery Issue Vulnerability
Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. A security vulnerability exists in several Apple products, which can be exploited by an attacker to intercept...
CVE-2019-8338
The signature verification routine in the Airmail GPG-PGP Plugin, versions 1.0 9 and earlier, does not verify the status of the signature at all, which allows remote attackers to spoof arbitrary email signatures by crafting a signed email with an invalid signature. Also, it does not verify the...
WindowsPT 1.2 User ID Key Spoofing Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24412/info WinPT Windows Privacy Tray is prone to a key-spoofing vulnerability because it fails to properly display user-supplied key data. An attacker can exploit this issue to trick victim users into encrypting...
DEBIAN-CVE-2012-6578
Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled with a "Sign by default" queue configuration, uses a queue's key for signing, which might allow remote attackers to spoof messages by leveraging the lack of authentication semantics...
CVE-2012-4694
Moxa EDR-G903 series routers with firmware before 2.11 do not use a sufficient source of entropy for 1 SSH and 2 SSL keys, which makes it easier for man-in-the-middle attackers to spoof a device or modify a client-server data stream by leveraging knowledge of a key from a product installation...
GnuPG key spoofing
Invalid key id usage with a key server...
WindowsPT 1.2 - User ID Key Spoofing
WindowsPT 1.2 - User ID Key Spoofing source: https://www.securityfocus.com/bid/24412/info WinPT Windows Privacy Tray is prone to a key-spoofing vulnerability because it fails to properly display user-supplied key data. An attacker can exploit this issue to trick victim users into encrypting...
WindowsPT 1.2 - User ID Key Spoofing
source: https://www.securityfocus.com/bid/24412/info WinPT Windows Privacy Tray is prone to a key-spoofing vulnerability because it fails to properly display user-supplied key data. An attacker can exploit this issue to trick victim users into encrypting potentially sensitive information with a...
CVE-2005-1794
Microsoft Terminal Server using Remote Desktop Protocol RDP 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks...
CVE-2005-1794
Microsoft Terminal Server using Remote Desktop Protocol RDP 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks...
Key spoofing bug in GnuPG
On certain condition message may be encrypted with another user's key without warning...